Security Vulnerability in Oracle Transportation Manager by Oracle
CVE-2017-3530

6.1MEDIUM

Key Information:

Vendor
Oracle
Status
Transportation Management
Vendor
CVE Published:
24 April 2017

Summary

An identified vulnerability within Oracle Transportation Manager allows an attacker with existing network access to exploit the system, resulting in unauthorized manipulation of sensitive data. This vulnerability necessitates interaction from a user, other than the attacker, to achieve a successful exploitation. Affected versions span from 6.2 to 6.4.2, highlighting the importance of timely updates and diligent application of security measures to safeguard against potential intrusions.

Affected Version(s)

Transportation Management 6.2

Transportation Management 6.3.0

Transportation Management 6.3.1

References

http://www.oracle.com/technetwork/security-advisory/cpuap...
x_refsource_CONFIRM
http://www.securitytracker.com/id/1038303
vdb-entryx_refsource_SECTRACK
http://www.securityfocus.com/bid/97723
vdb-entryx_refsource_BID

CVSS V3.1

Score:
6.1
Severity:
MEDIUM
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
High
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.