Local User Vulnerability in Oracle Retail Applications Affecting Point-of-Service System
CVE-2016-0438

Currently unrated

Key Information:

Vendor: Oracle
Status: Retail Applications
Vendor: CVE Published:; 21 January 2016

Summary

An unspecified local user vulnerability exists within the Oracle Retail Point-of-Service component of Oracle Retail Applications. This flaw can potentially allow local users to compromise confidentiality via certain vectors related to the Mobile POS functionality. It is distinct from other identified vulnerabilities such as CVE-2016-0434, CVE-2016-0436, and CVE-2016-0437. Organizations using affected versions should take proactive measures to mitigate possible risks.

References

http://www.oracle.com/technetwork/topics/security/cpujan2...

x_refsource_CONFIRM

http://www.securitytracker.com/id/1034718

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
Jan 21, 2016
Vulnerability Reserved
Dec 9, 2015