147 matches found
CVE-2018-3120
Vulnerability in the MICROS Lucas component of Oracle Retail Applications subcomponent: Security. Supported versions that are affected are 2.9.5.6 and 2.9.5.7. Difficult to exploit vulnerability allows low privileged attacker with network access via HTTP to compromise MICROS Lucas. Successful...
CVE-2018-3314
Vulnerability in the MICROS Relate CRM Software component of Oracle Retail Applications subcomponent: Customer. The supported version that is affected is 11.4. Difficult to exploit vulnerability allows low privileged attacker with network access via HTTP to compromise MICROS Relate CRM Software...
Medtronic Micro Clinician and InterStim Apps
1. EXECUTIVE SUMMARY CVSS v3 6.4 ATTENTION: Low attack complexity Vendor: Medtronic Equipment: Micros Clinician A51200 app and InterStim X Clinician A51300 app Vulnerabilities: Unverified Password Change 2. RISK EVALUATION Successful exploitation of this vulnerability could cause the clinician...
New ModPipe Point of Sale (POS) Malware Targeting Restaurants, Hotels
Cybersecurity researchers today disclosed a new kind of modular backdoor that targets point-of-sale POS restaurant management software from Oracle in an attempt to pilfer sensitive payment information stored in the devices. The backdoor — dubbed "ModPipe" — impacts Oracle MICROS Restaurant...
New ModPipe Point of Sale (POS) Malware Targeting Restaurants, Hotels
Cybersecurity researchers today disclosed a new kind of modular backdoor that targets point-of-sale POS restaurant management software from Oracle in an attempt to pilfer sensitive payment information stored in the devices. The backdoor — dubbed "ModPipe" — impacts Oracle MICROS Restaurant...
Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS : Apport vulnerabilities (USN-4449-1)
The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4449-1 advisory. Ryota Shiga working with Trend Micros Zero Day Initiative, discovered that Apport incorrectly dropped privileges when making...
Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS : ppp vulnerability (USN-4451-1)
The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-4451-1 advisory. Thomas Chauchefoin working with Trend Micros Zero Day Initiative, discovered that ppp incorrectly handled module loading. A local attacker...
CVE-2015-2909
Dedicated Micros DV-IP Express, SD Advanced, SD, EcoSense, and DS2 devices rely on a GUI warning to help ensure that the administrator configures login credentials, which makes it easier for remote attackers to obtain access by leveraging situations in which this warning was not heeded. NOTE: the...
Design/Logic Flaw
Dedicated Micros DV-IP Express, SD Advanced, SD, EcoSense, and DS2 devices rely on a GUI warning to help ensure that the administrator configures login credentials, which makes it easier for remote attackers to obtain access by leveraging situations in which this warning was not heeded. NOTE: the...
CVE-2015-2909
Dedicated Micros DV-IP Express, SD Advanced, SD, EcoSense, and DS2 devices rely on a GUI warning to help ensure that the administrator configures login credentials, which makes it easier for remote attackers to obtain access by leveraging situations in which this warning was not heeded. NOTE: the...
CVE-2015-2909
CVE-2015-2909 affects Dedicated Micros DV-IP Express, SD Advanced, SD, EcoSense and DS2 DVR products. Root cause: by default these devices expose HTTP/Telnet/FTP interfaces without authentication, relying on GUI warnings rather than enforcing login credentials. This enables remote attackers to ga...
The vulnerability of the Internal Operations component of the MICROS Relate CRM Software allows a perpetrator to gain unauthorized access to protected information.
The vulnerability of the Internal Operations component of the MICROS Relate CRM Software is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to protected information using the HTTP protocol...
Unspecified Vulnerability in Oracle Retail Applications MICROS Relate CRM Software Component (CNVD-2019-39857)
Oracle Retail Applications is a suite of retail applications store solutions from Oracle. The product includes inventory management, sales management and customer management, etc. MICROS Relate CRM Software is one of the customer relationship management components. An unspecified vulnerability...
CVE-2019-2896
Vulnerability in the MICROS Relate CRM Software product of Oracle Retail Applications component: Internal Operations. Supported versions that are affected are 7.1.0, 15.0.0, 16.0.0, 17.0.0, and 18.0.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP...
CVE-2019-2896
Vulnerability in the MICROS Relate CRM Software product of Oracle Retail Applications component: Internal Operations. Supported versions that are affected are 7.1.0, 15.0.0, 16.0.0, 17.0.0, and 18.0.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP...
Spoofing
Vulnerability in the MICROS Relate CRM Software product of Oracle Retail Applications component: Internal Operations. Supported versions that are affected are 7.1.0, 15.0.0, 16.0.0, 17.0.0, and 18.0.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP...
CVE-2019-2896
CVE-2019-2896 affects Oracle MICROS Relate CRM Software, specifically the Internal Operations component. Affected versions are 7.1.0, 15.0.0, 16.0.0, 17.0.0, and 18.0.0. The vulnerability is exploitable remotely over HTTP by an unauthenticated attacker, potentially leading to unauthorized access ...
CVE-2019-2896
Vulnerability in the MICROS Relate CRM Software product of Oracle Retail Applications component: Internal Operations. Supported versions that are affected are 7.1.0, 15.0.0, 16.0.0, 17.0.0, and 18.0.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP...
CVE-2019-2896
Vulnerability in the MICROS Relate CRM Software product of Oracle Retail Applications component: Internal Operations. Supported versions that are affected are 7.1.0, 15.0.0, 16.0.0, 17.0.0, and 18.0.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP...
Oracle MICROS Relate CRM Software CVE-2019-2896 Remote Security Vulnerability
Description Oracle MICROS Relate CRM Software is prone to a remote security vulnerability. The vulnerability can be exploited over the 'HTTP' protocol. The 'Internal Operations' component is affected. This vulnerability affects the following supported versions: 7.1.0, 15.0.0, 16.0.0, 17.0.0 and...