Vulnerability in Oracle Retail Applications MICROS Relate CRM Software
CVE-2019-2896

5.9MEDIUM

Key Information:

Vendor: Oracle
Status: Micros Relate Crm Software
Vendor: CVE Published:; 16 October 2019

Summary

A vulnerability exists in the MICROS Relate CRM Software from Oracle Retail Applications that allows an unauthenticated attacker with network access via HTTP to compromise the software. This flaw enables unauthorized access to sensitive data, potentially exposing critical information stored within the system. Supported versions affected include 7.1.0, 15.0.0, 16.0.0, 17.0.0, and 18.0.0, making it crucial for organizations to assess their systems to prevent data exposure.

Affected Version(s)

MICROS Relate CRM Software 7.1.0

MICROS Relate CRM Software 15.0.0

MICROS Relate CRM Software 16.0.0

References

http://www.oracle.com/technetwork/security-advisory/cpuoc...

x_refsource_MISC

CVSS V3.1

Score:

5.9

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Oct 16, 2019
Vulnerability Reserved
Dec 14, 2018