Oracle Hospitality Opera 5 Property Services vulnerabilities

CVE-2023-22085 [HIGH] CVE-2023-22085: Vulnerability in the Hospitality OPERA 5 Property Services product of Oracle Hospitality Application Vulnerability in the Hospitality OPERA 5 Property Services product of Oracle Hospitality Applications (component: Opera). The supported version that is affected is 5.6. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Hospitality OPERA 5 Property Services. Successful attacks of this vulnerability can r

CVE-2023-22087 [HIGH] CWE-306 CVE-2023-22087: Vulnerability in the Hospitality OPERA 5 Property Services product of Oracle Hospitality Application Vulnerability in the Hospitality OPERA 5 Property Services product of Oracle Hospitality Applications (component: Opera). The supported version that is affected is 5.6. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Hospitality OPERA 5 Property Services. Successful attacks of this vulnerabili

CVE-2023-21932 [HIGH] CVE-2023-21932: Vulnerability in the Oracle Hospitality OPERA 5 Property Services product of Oracle Hospitality Appl Vulnerability in the Oracle Hospitality OPERA 5 Property Services product of Oracle Hospitality Applications (component: OXI). The supported version that is affected is 5.6. Difficult to exploit vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle Hospitality OPERA 5 Property Services. While the vulnerability is in O

CVE-2020-14858 [MEDIUM] CVE-2020-14858: Vulnerability in the Oracle Hospitality OPERA 5 Property Services product of Oracle Hospitality Appl Vulnerability in the Oracle Hospitality OPERA 5 Property Services product of Oracle Hospitality Applications (component: Logging). Supported versions that are affected are 5.5 and 5.6. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle Hospitality OPERA 5 Property Services. Successful attacks r

CVE-2020-14877 [MEDIUM] CVE-2020-14877: Vulnerability in the Oracle Hospitality OPERA 5 Property Services product of Oracle Hospitality Appl Vulnerability in the Oracle Hospitality OPERA 5 Property Services product of Oracle Hospitality Applications (component: Logging). Supported versions that are affected are 5.5 and 5.6. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle Hospitality OPERA 5 Property Services. Successful attacks o

CVE-2019-10219 [MEDIUM] CWE-79 CVE-2019-10219: A vulnerability was found in Hibernate-Validator. The SafeHtml validator annotation fails to properl A vulnerability was found in Hibernate-Validator. The SafeHtml validator annotation fails to properly sanitize payloads consisting of potentially malicious code in HTML comments and instructions. This vulnerability can result in an XSS attack.

CVE-2017-10197 [MEDIUM] CWE-200 CVE-2017-10197: Vulnerability in the Oracle Hospitality OPERA 5 Property Services component of Oracle Hospitality Ap Vulnerability in the Oracle Hospitality OPERA 5 Property Services component of Oracle Hospitality Applications (subcomponent: Folios). The supported version that is affected is 5.4.2.x through 5.5.1.x. Easily exploitable vulnerability allows physical access to compromise Oracle Hospitality OPERA 5 Property Services. Successful attacks of this vulner

CVE-2017-10182 [MEDIUM] CVE-2017-10182: Vulnerability in the Oracle Hospitality OPERA 5 Property Services component of Oracle Hospitality Ap Vulnerability in the Oracle Hospitality OPERA 5 Property Services component of Oracle Hospitality Applications (subcomponent: OPERA Export Functionality). Supported versions that are affected are 5.4.0.x, 5.4.1.x and 5.4.3.x. Difficult to exploit vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle Hospitality OPER

CVE-2017-3574 [HIGH] CVE-2017-3574: Vulnerability in the Oracle Hospitality OPERA 5 Property Services component of Oracle Hospitality Ap Vulnerability in the Oracle Hospitality OPERA 5 Property Services component of Oracle Hospitality Applications (subcomponent: OPERA License code configuration). Supported versions that are affected are 5.4.0.x, 5.4.1.x, 5.4.2.x, 5.4.3.x, 5.5.0.x and 5.5.1.x. Easily "exploitable" vulnerability allows low privileged attacker with network access via HTTP to compro

CVE-2017-3573 [MEDIUM] CVE-2017-3573: Vulnerability in the Oracle Hospitality OPERA 5 Property Services component of Oracle Hospitality Ap Vulnerability in the Oracle Hospitality OPERA 5 Property Services component of Oracle Hospitality Applications (subcomponent: OPERA Printing). Supported versions that are affected are 5.4.0.x, 5.4.1.x, 5.4.2.x, 5.4.3.x, 5.5.0.x and 5.5.1.x. Easily "exploitable" vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Hos

CVE-2017-3560 [MEDIUM] CWE-200 CVE-2017-3560: Vulnerability in the Oracle Hospitality OPERA 5 Property Services component of Oracle Hospitality Ap Vulnerability in the Oracle Hospitality OPERA 5 Property Services component of Oracle Hospitality Applications (subcomponent: OXI Interface). Supported versions that are affected are 5.4.0.x, 5.4.1.x, 5.4.2.x, 5.4.3.x, 5.5.0.x and 5.5.1.x. Easily "exploitable" vulnerability allows low privileged attacker with network access via HTTP to compromise Orac

CVE-2017-3568 [MEDIUM] CVE-2017-3568: Vulnerability in the Oracle Hospitality OPERA 5 Property Services component of Oracle Hospitality Ap Vulnerability in the Oracle Hospitality OPERA 5 Property Services component of Oracle Hospitality Applications (subcomponent: OPERA Printing and Login). Supported versions that are affected are 5.4.0.x, 5.4.1.x, 5.4.2.x, 5.4.3.x, 5.5.0.x and 5.5.1.x. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infrastructure where Orac

CVE-2017-3552 [MEDIUM] CWE-200 CVE-2017-3552: Vulnerability in the Oracle Hospitality OPERA 5 Property Services component of Oracle Hospitality Ap Vulnerability in the Oracle Hospitality OPERA 5 Property Services component of Oracle Hospitality Applications (subcomponent: OPERA Room Image/Picture Setup). Supported versions that are affected are 5.4.0.x, 5.4.1.x, 5.4.2.x, 5.4.3.x, 5.5.0.x and 5.5.1.x. Easily "exploitable" vulnerability allows low privileged attacker with network access via HTTP t

CVE-2017-3569 [MEDIUM] CVE-2017-3569: Vulnerability in the Oracle Hospitality OPERA 5 Property Services component of Oracle Hospitality Ap Vulnerability in the Oracle Hospitality OPERA 5 Property Services component of Oracle Hospitality Applications (subcomponent: OPERA Business Events). Supported versions that are affected are 5.4.0.x, 5.4.1.x, 5.4.2.x, 5.4.3.x, 5.5.0.x and 5.5.1.x. Easily "exploitable" vulnerability allows low privileged attacker with network access via HTTP to compromise Orac

CVE-2016-5564 [HIGH] CVE-2016-5564: Unspecified vulnerability in the Oracle Hospitality OPERA 5 Property Services component in Oracle Ho Unspecified vulnerability in the Oracle Hospitality OPERA 5 Property Services component in Oracle Hospitality Applications 5.4.0.0 through 5.4.3.0, 5.5.0.0, and 5.5.1.0 allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to OPERA.

CVE-2016-5565 [HIGH] CWE-200 CVE-2016-5565: Unspecified vulnerability in the Oracle Hospitality OPERA 5 Property Services component in Oracle Ho Unspecified vulnerability in the Oracle Hospitality OPERA 5 Property Services component in Oracle Hospitality Applications 5.4.0.0 through 5.4.3.0, 5.5.0.0, and 5.5.1.0 allows remote authenticated users to affect confidentiality via vectors related to OPERA.

CVE-2016-5563 [HIGH] CVE-2016-5563: Unspecified vulnerability in the Oracle Hospitality OPERA 5 Property Services component in Oracle Ho Unspecified vulnerability in the Oracle Hospitality OPERA 5 Property Services component in Oracle Hospitality Applications 5.4.0.0 through 5.4.3.0, 5.5.0.0, and 5.5.1.0 allows remote administrators to affect confidentiality, integrity, and availability via vectors related to OPERA.