CVE-2016-5475

Опубликовано: 21 июл. 2016

Источник: nvd

CVSS3: 7.6

CVSS2: 8

EPSS Низкий

Описание

Unspecified vulnerability in the Oracle Retail Service Backbone component in Oracle Retail Applications 14.0, 14.1, and 15.0 allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to Install.

Ссылки

http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html
Patch
Vendor Advisory
http://www.securityfocus.com/bid/91787
Third Party Advisory
VDB Entry
http://www.securityfocus.com/bid/91895
http://www.securitytracker.com/id/1036397
http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html
Patch
Vendor Advisory
http://www.securityfocus.com/bid/91787
Third Party Advisory
VDB Entry
http://www.securityfocus.com/bid/91895
http://www.securitytracker.com/id/1036397

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:oracle:retail_service_backbone:14.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_service_backbone:14.1:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_service_backbone:15.0:*:*:*:*:*:*:*

EPSS

Процентиль: 72%

0.00704

Низкий

7.6 High

CVSS3

8 High

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-f23f-xrf2-pvrp