Lucene search

OracleCVE-2016-0684

HistoryApr 21, 2016 - 10:59 a.m.

CVE-2016-0684

2016-04-2110:59:45

oracle

web.nvd.nist.gov

oracle

retail

micros

ars

pos

vulnerability

confidentiality

nvd

cve-2016-0684

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:S/C:C/I:N/A:N

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

AI Score

5.6

Confidence

High

EPSS

0.001

Percentile

43.5%

JSON

Unspecified vulnerability in the Oracle Retail MICROS ARS POS component in Oracle Retail Applications 1.5 allows remote authenticated users to affect confidentiality via vectors related to POS.

Affected configurations

Nvd

Node

oraclemicros_arsposMatch1.5

VendorProductVersionCPE
oraclemicros_arspos1.5cpe:2.3:a:oracle:micros_arspos:1.5:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
oracle	micros_arspos	1.5	cpe:2.3:a:oracle:micros_arspos:1.5:::::::*

References

www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html

www.securitytracker.com/id/1035600

Social References

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:S/C:C/I:N/A:N

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

AI Score

5.6

Confidence

High

EPSS

0.001

Percentile

43.5%

JSON

Related for CVE-2016-0684