Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-cj23-4vc3-qpfc

Опубликовано: 18 окт. 2023
Источник: github
Github: Не прошло ревью
CVSS3: 8.8

Описание

Vulnerability in the Hospitality OPERA 5 Property Services product of Oracle Hospitality Applications (component: Opera). The supported version that is affected is 5.6. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Hospitality OPERA 5 Property Services. Successful attacks of this vulnerability can result in takeover of Hospitality OPERA 5 Property Services. CVSS 3.1 Base Score 8.8 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H).

Vulnerability in the Hospitality OPERA 5 Property Services product of Oracle Hospitality Applications (component: Opera). The supported version that is affected is 5.6. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Hospitality OPERA 5 Property Services. Successful attacks of this vulnerability can result in takeover of Hospitality OPERA 5 Property Services. CVSS 3.1 Base Score 8.8 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H).

Ссылки

EPSS

Процентиль: 63%
0.00439
Низкий

8.8 High

CVSS3

CVE ID

CVE-2023-22087

Дефекты

CWE-306

Связанные уязвимости

nvd логотип

CVE-2023-22087

CVSS3: 8.8
nvd
больше 2 лет назад

Vulnerability in the Hospitality OPERA 5 Property Services product of Oracle Hospitality Applications (component: Opera). The supported version that is affected is 5.6. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Hospitality OPERA 5 Property Services. Successful attacks of this vulnerability can result in takeover of Hospitality OPERA 5 Property Services. CVSS 3.1 Base Score 8.8 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H).

fstec логотип

BDU:2023-07008

CVSS3: 8.8
fstec
больше 2 лет назад

Уязвимость компонента Opera программного средства управления гостиничными ресурсами Oracle Hospitality Opera 5, позволяющая нарушителю выполнить произвольный код

EPSS

Процентиль: 63%
0.00439
Низкий

8.8 High

CVSS3

CVE ID

CVE-2023-22087

Дефекты

CWE-306