Vulnerability in Oracle Hospitality Cruise Fleet Management System Application
CVE-2018-3003

6.2MEDIUM

Key Information:

Vendor
Oracle
Status
Hospitality Cruise Fleet Management
Vendor
CVE Published:
18 July 2018

Summary

A vulnerability exists in the Oracle Hospitality Cruise Fleet Management System component, allowing an unauthenticated attacker, with access to the infrastructure, to exploit the system. This could lead to unauthorized access to sensitive information or complete exposure of all accessible data within Oracle Hospitality's environment. The security risk affects the supported version 9.x, emphasizing the need for immediate action to secure critical data from potential breaches.

Affected Version(s)

Hospitality Cruise Fleet Management 9.x

References

http://www.securityfocus.com/bid/104811
vdb-entryx_refsource_BID
http://www.oracle.com/technetwork/security-advisory/cpuju...
x_refsource_CONFIRM
http://www.securitytracker.com/id/1041300
vdb-entryx_refsource_SECTRACK

CVSS V3.1

Score:
6.2
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.