Vulnerabilities > CVE-2016-3429 - Unspecified vulnerability in Oracle Retail Xstore Point of Service

CVSS 4.5 - MEDIUM

Attack vector

PHYSICAL

Attack complexity

HIGH

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

LOW

Availability impact

NONE

high complexity

oracle

NVD

Published: 2016-04-21

Updated: 2016-12-03

Summary

Unspecified vulnerability in the Oracle Retail Xstore Point of Service component in Oracle Retail Applications 5.0, 5.5, 6.0, 6.5, 7.0, and 7.1 allows remote authenticated users to affect confidentiality and integrity via vectors related to Xstore Services.

Vulnerable Configurations

Part	Description	Count
Application	Oracle Oracle Retail Xstore Point OF Service 7.1 Oracle Retail Xstore Point OF Service 5.0 Oracle Retail Xstore Point OF Service 6.5 Oracle Retail Xstore Point OF Service 5.5 Oracle Retail Xstore Point OF Service 6.0 Oracle Retail Xstore Point OF Service 7.0	6

References

http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html
http://www.securitytracker.com/id/1035600