Published: 23/04/2019 Updated: 21/11/2024

Vulnerability in the Oracle Retail Point-of-Service component of Oracle Retail Applications (subcomponent: Infrastructure). Supported versions that are affected are 13.4, 14.0 and 14.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Retail Point-of-Service. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Retail Point-of-Service accessible data as well as unauthorized read access to a subset of Oracle Retail Point-of-Service accessible data and unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Retail Point-of-Service. CVSS 3.0 Base Score 7.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L).

Vulnerable Product	Search on Vulmon	Subscribe to Product
oracle corporation retail point-of-service
oracle retail point-of-service 13.4
oracle retail point-of-service 14.0
oracle retail point-of-service 14.1

NVD-CWE-noinfo https://nvd.nist.gov https://www.first.org/epss http://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html http://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2019-2558

Vulnerability Summary

Vulnerability Trend

References

Vulmon Search

About

Products

Connect