漏洞标题
N/A
漏洞描述信息
Oracle Retail应用程序中的Oracle Retail Customer Management和Segmentation Foundation产品(组件:内部操作)存在漏洞。受影响的支持版本是19.0。这个易被利用的漏洞允许通过HTTP网络访问的低特权攻击者访问Oracle Retail Customer Management和Segmentation Foundation。成功利用这个漏洞可能导致对Oracle Retail Customer Management和Segmentation Foundation可访问数据的未经授权更新、插入或删除访问,以及未经授权的读取访问Oracle Retail Customer Management和Segmentation Foundation可访问数据的子集,以及未经授权的能力导致Oracle Retail Customer Management和Segmentation Foundation的不完全拒绝服务(不完全DOS)。CVSS 3.1基础得分6.3(保密性、完整性和可用性影响)。CVSS向量:(CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L)
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
漏洞类别
N/A
漏洞标题
N/A
漏洞描述信息
Vulnerability in the Oracle Retail Customer Management and Segmentation Foundation product of Oracle Retail Applications (component: Internal Operations). The supported version that is affected is 19.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Retail Customer Management and Segmentation Foundation. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Retail Customer Management and Segmentation Foundation accessible data as well as unauthorized read access to a subset of Oracle Retail Customer Management and Segmentation Foundation accessible data and unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Retail Customer Management and Segmentation Foundation. CVSS 3.1 Base Score 6.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L).
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
漏洞类别
N/A
漏洞标题
Oracle Retail Applications 组件安全漏洞
漏洞描述信息
Oracle Retail Applications是美国甲骨文(Oracle)公司的一套零售应用商店解决方案。该产品包括库存管理、销售管理和客户管理等。Retail Customer Management and Segmentation Foundation是其中的一个零售客户管理组件。 Oracle Retail Applications 的 Oracle Retail Customer Management and Segmentation Foundation product 组件存在安全漏洞,
CVSS信息
N/A
漏洞类别
其他