How severe is CVE-2017-10054?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 5.1 out of 10.

What type of vulnerability is CVE-2017-10054?

This is classified as NVD-CWE-Other, which is a common weakness in software security.

CVE-2017-10054

MEDIUM Year: 2017

CVSS v3 Score

5.1

Medium

CVSS v2 Score

3.6

Low

Weakness Type

NVD-CWE-Other

View all →

Vulnerability Description

Vulnerability in the Oracle Hospitality Cruise Materials Management component of Oracle Hospitality Applications (subcomponent: MMS). The supported version that is affected is 7.30.564.0. Easily exploitable vulnerability allows unauthenticated attacker with logon to the infrastructure where Oracle Hospitality Cruise Materials Management executes to compromise Oracle Hospitality Cruise Materials Management. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Hospitality Cruise Materials Management accessible data as well as unauthorized read access to a subset of Oracle Hospitality Cruise Materials Management accessible data. CVSS 3.0 Base Score 5.1 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N).

CVE-2016-0641

MEDIUM

CVSS:5.1(Medium)

Unspecified vulnerability in Oracle MySQL 5.5.47 and earlier, 5.6.28 and earlier, and 5.7.10 and earlier and MariaDB before 5.5.48, 10.0.x before 10.0.24, and 10.1.x before 10.1.12 allows local users ...

NVD-CWE-Other2016

CVE-2016-5746

MEDIUM

CVSS:5.1(Medium)

libstorage, libstorage-ng, and yast-storage improperly store passphrases for encrypted storage devices in a temporary file on disk, which might allow local users to obtain sensitive information by rea...

NVD-CWE-Other2016

CVE-2017-10419

MEDIUM

CVSS:5.1(Medium)

Vulnerability in the Oracle Hospitality Suite8 component of Oracle Hospitality Applications (subcomponent: PMS). Supported versions that are affected are 8.10.1 and 8.10.2. Easily exploitable vulnerab...

NVD-CWE-Other2017

CVE-2017-3504

MEDIUM

CVSS:5.1(Medium)

Vulnerability in the Automatic Service Request (ASR) component of Oracle Support Tools (subcomponent: ASR Manager). The supported version that is affected is Prior to 5.7. Easily "exploitable" vulnera...

NVD-CWE-Other2017

CVE-2017-3505

MEDIUM

CVSS:5.1(Medium)

NVD-CWE-Other2017

CVE-2019-0150

MEDIUM

CVSS:5.1(Medium)

Insufficient access control in firmware Intel(R) Ethernet 700 Series Controllers versions before 7.0 may allow a privileged user to potentially enable a denial of service via local access.

NVD-CWE-Other2019

CVE-2017-10054

Vulnerability Description

Related Vulnerabilities

CVE-2016-0641

CVE-2016-5746

CVE-2017-10419

CVE-2017-3504

CVE-2017-3505

CVE-2019-0150