Oracle Retail Predictive Application Server Vulnerabilidad

Cronología

Versión

15.0.3	12
16.0.3	10
14.1.3	7
14.1	5
15.0	4

Contramedidas

Official Fix	27
Temporary Fix	0
Workaround	0
Unavailable	0
Not Defined	0

Explotabilidad

High	0
Functional	0
Proof-of-Concept	0
Unproven	0
Not Defined	27

Vector de acceso

Not Defined	0
Physical	0
Local	4
Adjacent	0
Network	23

Autenticación

Not Defined	0
High	0
Low	9
None	18

La interacción del usuario

Not Defined	0
Required	5
None	22

CVSSv3 Base

≤1	0
≤2	0
≤3	0
≤4	1
≤5	0
≤6	4
≤7	4
≤8	7
≤9	7
≤10	4

CVSSv3 Temp

≤1	0
≤2	0
≤3	0
≤4	1
≤5	0
≤6	4
≤7	5
≤8	9
≤9	4
≤10	4

VulDB

≤1	0
≤2	0
≤3	0
≤4	1
≤5	0
≤6	4
≤7	4
≤8	6
≤9	6
≤10	6

NVD

≤1	0
≤2	0
≤3	0
≤4	1
≤5	0
≤6	4
≤7	6
≤8	5
≤9	4
≤10	5

CNA

≤1	0
≤2	0
≤3	0
≤4	0
≤5	1
≤6	0
≤7	0
≤8	0
≤9	1
≤10	0

Proveedor

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	2
≤7	0
≤8	3
≤9	4
≤10	4

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Explotar día 0

<1k	0
<2k	0
<5k	2
<10k	7
<25k	9
<50k	5
<100k	3
≥100k	1

Explotar hoy

<1k	19
<2k	2
<5k	1
<10k	2
<25k	2
<50k	1
<100k	0
≥100k	0

Explotar el volumen del mercado

Affected Versions (25): 13.1, 13.2, 13.3, 13.3.3, 13.4, 13.4.3, 14.0, 14.0.3, 14.0.3.26, 14.1, 14.1.3, 14.1.3.37, 14.1.3.46, 14.1.3.47, 15.0, 15.0.2, 15.0.3, 15.0.3.1, 15.0.3.115, 15.0.3.116, 16, 16.0, 16.0.3, 16.0.3.24, 16.0.3.26

Link to Product Website: https://www.oracle.com

Tipo de software: Application Server Software

Fecha de publicación	Base	Temp	Vulnerabilidad	0day	Hoy	Exp	Con	CTI	CVE
2023-07-18	6.5	6.3	Oracle Retail Predictive Application Server RPAS Server denegación de servicio	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2023-20863
2023-04-18	9.8	9.6	Oracle Retail Predictive Application Server RPAS Server desbordamiento de búfer	$25k-$100k	$25k-$100k	Not Defined	Official Fix	0.02	CVE-2022-37434
2023-04-18	8.1	8.0	Oracle Retail Predictive Application Server RPAS Server cifrado débil	$25k-$100k	$5k-$25k	Not Defined	Official Fix	0.00	CVE-2020-35168
2022-10-19	6.5	6.3	Oracle Retail Predictive Application Server RPAS Server denegación de servicio	$0-$5k	$0-$5k	Not Defined	Official Fix	0.02	CVE-2022-22971
2021-10-19	5.5	5.4	Oracle Retail Predictive Application Server Apache Ant denegación de servicio	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2021-36374
2021-10-19	7.8	7.6	Oracle Retail Predictive Application Server Spring Framework escalada de privilegios	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2021-22118
2021-04-21	6.5	6.2	Oracle Retail Predictive Application Server RPAS Server divulgación de información	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2019-3740
2021-04-21	7.3	7.0	Oracle Retail Predictive Application Server RPAS Fusion Client escalada de privilegios	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2019-10086
2021-04-21	7.5	7.2	Oracle Retail Predictive Application Server RPAS Fusion Client vulnerabilidad desconocida	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2020-11979
2021-04-21	7.7	7.3	Oracle Retail Predictive Application Server RPAS Fusion Client Privilege Escalation	$25k-$100k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2020-5421

17 no se muestran más entradas

🔒 Login Required

You need to signup and login to see more of the remaining 17 results.

más entradas por Oracle

◂ AnteriorVisión De ConjuntoPróximo ▸

Do you need the next level of professionalism?

Upgrade your account now!