Vulnerability in Oracle Hospitality Reporting and Analytics Component for Oracle Applications
CVE-2017-10404

9.9CRITICAL

Key Information:

Vendor: Oracle
Status: Hospitality Reporting And Analytics
Vendor: CVE Published:; 19 October 2017

What is CVE-2017-10404?

An exploitable vulnerability exists in the Oracle Hospitality Reporting and Analytics component of Oracle Hospitality Applications. The vulnerability allows an attacker with low privileges and network access via HTTP to compromise the system. Although directly affecting the Reporting and Analytics component, successful exploits can potentially impact additional Oracle hospitality products, potentially leading to unauthorized access and control over critical data and functionalities.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Hospitality Reporting and Analytics 8.5.1

Hospitality Reporting and Analytics 9.0.0

References

http://www.oracle.com/technetwork/security-advisory/cpuoc...

x_refsource_CONFIRM

http://www.securityfocus.com/bid/101403

vdb-entryx_refsource_BID

CVSS V3.1

Score:

9.9

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Changed

Timeline

Vulnerability published
Oct 19, 2017
Vulnerability Reserved
Jun 21, 2017

JSON

Oracle

What is CVE-2017-10404?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

Affected Version(s)

References

CVSS V3.1

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.