Vulnerability in Oracle Hospitality Cruise Shipboard Property Management System
CVE-2018-3001

6.2MEDIUM

Key Information:

Vendor

Oracle
Status
Hospitality Cruise Shipboard Property Management System
Vendor
CVE Published:
18 July 2018

What is CVE-2018-3001?

This vulnerability in the Oracle Hospitality Cruise Shipboard Property Management System allows an unauthenticated attacker to gain access to the system infrastructure. An attacker with network access can exploit this flaw to compromise the system, potentially leading to unauthorized access to sensitive data. Successful exploitation can provide an attacker with complete access to all data that the system manages, posing significant risks to data confidentiality.

Affected Version(s)

Hospitality Cruise Shipboard Property Management System 8.x

References

http://www.oracle.com/technetwork/security-advisory/cpuju...
x_refsource_CONFIRM
http://www.securityfocus.com/bid/104815
vdb-entryx_refsource_BID
http://www.securitytracker.com/id/1041300
vdb-entryx_refsource_SECTRACK

CVSS V3.1

Score:
6.2
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.