CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-10182

Vulnerability in the Oracle Hospitality OPERA 5 Property Services component of Oracle Hospitality Applications (subcomponent: OPERA Export Functionality). Supported versions that are affected are 5.4.0.x, 5.4.1.x and 5.4.3.x. Difficult to exploit vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle Hospitality OPERA 5 Property Services. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle Hospitality OPERA 5 Property Services accessible data. CVSS 3.0 Base Score 4.4 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N).

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 67.9%

CVSS Severity

CVSS v3 Score 4.4

CVSS v2 Score 3.5

References

Products affected by CVE-2017-10182

Oracle » Hospitality Opera 5 Property Services » Version: 5.4.0

cpe:2.3:a:oracle:hospitality_opera_5_property_services:5.4.0
Oracle » Hospitality Opera 5 Property Services » Version: 5.4.1

cpe:2.3:a:oracle:hospitality_opera_5_property_services:5.4.1
Oracle » Hospitality Opera 5 Property Services » Version: 5.4.3

cpe:2.3:a:oracle:hospitality_opera_5_property_services:5.4.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-10182

Products

Pricing

Contact Us