CVE-2016-5475

7.6HIGH

Key Information:

Vendor: Oracle
Status: Retail Service Backbone
Vendor: CVE Published:; 21 July 2016

Summary

Unspecified vulnerability in the Oracle Retail Service Backbone component in Oracle Retail Applications 14.0, 14.1, and 15.0 allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to Install.

References

http://www.securityfocus.com/bid/91895

vdb-entryx_refsource_BID

http://www.oracle.com/technetwork/security-advisory/cpuju...

x_refsource_CONFIRM

http://www.securitytracker.com/id/1036397

vdb-entryx_refsource_SECTRACK

CVSS V3.1

Score:

7.6

Severity:

HIGH

Confidentiality:

High

Integrity:

Low

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jul 21, 2016
Vulnerability Reserved
Jun 16, 2016