How severe is CVE-2017-10065?

This vulnerability has a severity rating of HIGH with a CVSS score of 8.5 out of 10.

What type of vulnerability is CVE-2017-10065?

This is classified as NVD-CWE-Other, which is a common weakness in software security.

CVE-2017-10065

HIGH Year: 2017

CVSS v3 Score

8.5

High

CVSS v2 Score

5.5

Medium

Weakness Type

NVD-CWE-Other

View all →

Vulnerability Description

Vulnerability in the Oracle Retail Point-of-Service component of Oracle Retail Applications (subcomponent: Security). Supported versions that are affected are 13.2, 13.3, 13.4, 14.0 and 14.1. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Retail Point-of-Service. While the vulnerability is in Oracle Retail Point-of-Service, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Oracle Retail Point-of-Service accessible data as well as unauthorized read access to a subset of Oracle Retail Point-of-Service accessible data. CVSS 3.0 Base Score 8.5 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:H/A:N).

CVE-2015-6019

HIGH

CVSS:8.5(High)

The management portal on ZyXEL PMG5318-B20A devices with firmware 1.00AANC0b5 does not terminate sessions upon a logout action, which allows remote attackers to bypass intended access restrictions by ...

NVD-CWE-Other2015

CVE-2017-3493

HIGH

CVSS:8.5(High)

Vulnerability in the Oracle FLEXCUBE Enterprise Limits and Collateral Management component of Oracle Financial Services Applications (subcomponent: Infrastructure). Supported versions that are affecte...

NVD-CWE-Other2017

CVE-2017-3523

HIGH

CVSS:8.5(High)

Vulnerability in the MySQL Connectors component of Oracle MySQL (subcomponent: Connector/J). Supported versions that are affected are 5.1.40 and earlier. Difficult to exploit vulnerability allows low ...

NVD-CWE-Other2017

CVE-2017-3558

HIGH

CVSS:8.5(High)

Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: Core). Supported versions that are affected are Prior to 5.0.38 and Prior to 5.1.20. Easily "exploitable" vu...

NVD-CWE-Other2017

CVE-2018-1701

HIGH

CVSS:8.5(High)

IBM InfoSphere Information Server 11.7 could allow an authenciated user under specialized conditions to inject commands into the installation process that would execute on the WebSphere Application Se...

NVD-CWE-Other2018

CVE-2018-2475

HIGH

CVSS:8.5(High)

Following the Gardener architecture, the Kubernetes apiserver of a Gardener managed shoot cluster resides in the corresponding seed cluster. Due to missing network isolation a shoot's apiserver can ac...

NVD-CWE-Other2018

CVE-2017-10065

Vulnerability Description

Related Vulnerabilities

CVE-2015-6019

CVE-2017-3493

CVE-2017-3523

CVE-2017-3558

CVE-2018-1701

CVE-2018-2475