Vulnerabilities > CVE-2016-3429 - Local Security vulnerability in Oracle Retail Applications

CVSS 5.4 - MEDIUM

Attack vector

LOCAL

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

PARTIAL

Availability impact

NONE

local

oracle

NVD

Published: 2016-04-21

Updated: 2016-12-03

Summary

Unspecified vulnerability in the Oracle Retail Xstore Point of Service component in Oracle Retail Applications 5.0, 5.5, 6.0, 6.5, 7.0, and 7.1 allows remote authenticated users to affect confidentiality and integrity via vectors related to Xstore Services.

Vulnerable Configurations

Part	Description	Count
Application	Oracle Oracle Retail Xstore Point OF Service 5.0 Oracle Retail Xstore Point OF Service 5.5 Oracle Retail Xstore Point OF Service 6.0 Oracle Retail Xstore Point OF Service 6.5 Oracle Retail Xstore Point OF Service 7.0 Oracle Retail Xstore Point OF Service 7.1	6

References

http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html
http://www.securitytracker.com/id/1035600