CVE-2019-2750Corporation Micros Retail-j vulnerability

3 documents3 sources
Severity
8.6HIGHNVD
EPSS
1.7%
top 17.53%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Oracle Corporation Micros Retail-jOracle Micros Retail-j
Timeline
PublishedJul 23
Latest updateMay 24

Description

Vulnerability in the MICROS Retail-J component of Oracle Retail Applications (subcomponent: Internal Operations). Supported versions that are affected are 12.1.0, 12.1.1, 12.1.2 and 13.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise MICROS Retail-J. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all MICROS Retail-J accessible data as well as unauthorized update, inser

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:LExploitability: 3.9 | Impact: 4.7

Affected Packages2 packages

NVDoracle/micros_retail-j4 versions+3
CVEListV5oracle_corporation/micros_retail-j4 versions+3

Patches

Patch: www.oracle.comPatch: www.oracle.com

🔴Vulnerability Details

2
GHSA
GHSA-gmmv-jr59-crfp: Vulnerability in the MICROS Retail-J component of Oracle Retail Applications (subcomponent: Internal Operations)2022-05-24
CVEList
CVE-2019-2750: Vulnerability in the MICROS Retail-J component of Oracle Retail Applications (subcomponent: Internal Operations)2019-07-23
CVE-2019-2750 — HIGH severity | cvebase