- Description
- Unspecified vulnerability in the Oracle Retail Service Backbone component in Oracle Retail Applications 14.0, 14.1, and 15.0 allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to Install.
- Source
- secalert_us@oracle.com
- NVD status
- Modified
CVSS 3.0
- Type
- Primary
- Base score
- 7.6
- Impact score
- 4.7
- Exploitability score
- 2.8
- Vector string
- CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L
- Severity
- HIGH
CVSS 2.0
- Type
- Primary
- Base score
- 8
- Impact score
- 8.5
- Exploitability score
- 8
- Vector string
- AV:N/AC:L/Au:S/C:C/I:P/A:P
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:oracle:retail_service_backbone:14.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "69334F96-5759-4475-9931-038C98109D53"
},
{
"criteria": "cpe:2.3:a:oracle:retail_service_backbone:14.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "378A6656-252B-4929-83EA-BC107FDFD357"
},
{
"criteria": "cpe:2.3:a:oracle:retail_service_backbone:15.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "363395FA-C296-4B2B-9D6F-BCB8DBE6FACE"
}
],
"operator": "OR"
}
]
}
]