Vulnerability in Oracle Hospitality RES 3700 Affects Data Integrity and Availability
CVE-2017-10225

7HIGH

Key Information:

Vendor
Oracle
Status
Hospitality Res 3700
Vendor
CVE Published:
8 August 2017

Summary

A vulnerability exists in the Oracle Hospitality RES 3700 component of Oracle Hospitality Applications that can be exploited with physical access. This flaw allows an attacker to potentially create, delete, or modify critical data, compromising the integrity and availability of data accessible through Oracle Hospitality RES 3700. Additionally, attackers could have unauthorized access to sensitive information and even cause a partial denial of service. Effective security measures are essential to safeguard against such risks.

Affected Version(s)

Hospitality RES 3700 5.5

References

http://www.securitytracker.com/id/1038941
vdb-entryx_refsource_SECTRACK
http://www.securityfocus.com/bid/99815
vdb-entryx_refsource_BID
http://www.oracle.com/technetwork/security-advisory/cpuju...
x_refsource_CONFIRM

CVSS V3.1

Score:
7
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Physical
Attack Complexity:
High
Privileges Required:
Low
User Interaction:
None
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.