Exploitable Vulnerability in Oracle Hospitality Cruise Dining Room Management
CVE-2019-2702
9.3CRITICAL
Key Information:
- Vendor
- Oracle
- Vendor
- CVE Published:
- 23 April 2019
Summary
A security flaw in Oracle Hospitality Cruise Dining Room Management enables unauthenticated attackers with network access via HTTP to compromise the system. This vulnerability may result in unauthorized access to sensitive data, allowing attackers to view, manipulate, or delete crucial information, thereby posing significant risks to data integrity and confidentiality. Due to its nature, exploitation of this vulnerability could impact other interconnected systems and services.
Affected Version(s)
Hospitality Cruise Dining Room Management 8.0.80
References
CVSS V3.1
Score:
9.3
Severity:
CRITICAL
Confidentiality:
High
Integrity:
Low
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Changed
Timeline
Vulnerability published
Vulnerability Reserved