Spoofing

2019-10-1618:15:00

PRIOn knowledge base

www.prio-n.com

5.7 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

58.6%

JSON

Vulnerability in the MICROS Relate CRM Software product of Oracle Retail Applications (component: Internal Operations). Supported versions that are affected are 7.1.0, 15.0.0, 16.0.0, 17.0.0, and 18.0.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP to compromise MICROS Relate CRM Software. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all MICROS Relate CRM Software accessible data. CVSS 3.0 Base Score 5.9 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N).

CPENameOperatorVersion
micros_relate_customer_relationship_management_softwareeq7.1.0
micros_relate_customer_relationship_management_softwareeq15.0.0
micros_relate_customer_relationship_management_softwareeq16.0.0
micros_relate_customer_relationship_management_softwareeq17.0.0
micros_relate_customer_relationship_management_softwareeq18.0.0

Name	Operator	Version
micros_relate_customer_relationship_management_software	eq	7.1.0
micros_relate_customer_relationship_management_software	eq	15.0.0
micros_relate_customer_relationship_management_software	eq	16.0.0
micros_relate_customer_relationship_management_software	eq	17.0.0
micros_relate_customer_relationship_management_software	eq	18.0.0