How severe is CVE-2017-10372?

This vulnerability has a severity rating of HIGH with a CVSS score of 8.7 out of 10.

What type of vulnerability is CVE-2017-10372?

This is classified as NVD-CWE-Other, which is a common weakness in software security.

CVE-2017-10372

HIGH Year: 2017

CVSS v3 Score

8.7

High

CVSS v2 Score

5.5

Medium

Weakness Type

NVD-CWE-Other

View all →

Vulnerability Description

Vulnerability in the Oracle Hospitality Guest Access component of Oracle Hospitality Applications (subcomponent: Base). Supported versions that are affected are 4.2.0 and 4.2.1. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle Hospitality Guest Access. While the vulnerability is in Oracle Hospitality Guest Access, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Oracle Hospitality Guest Access accessible data and unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle Hospitality Guest Access. CVSS 3.0 Base Score 8.7 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:H/A:H).

CVE-2016-0679

HIGH

CVSS:8.7(High)

Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53, 8.54, and 8.55 allows remote authenticated users to affect integrity and availability v...

NVD-CWE-Other2016

CVE-2017-10401

HIGH

CVSS:8.7(High)

Vulnerability in the Oracle Hospitality Cruise Materials Management component of Oracle Hospitality Applications (subcomponent: MMSUpdater). The supported version that is affected is 7.30.564.0. Easil...

NVD-CWE-Other2017

CVE-2017-3500

HIGH

CVSS:8.7(High)

Vulnerability in the Primavera Gateway component of Oracle Primavera Products Suite (subcomponent: Primavera Desktop Integration). Supported versions that are affected are 1.0, 1.1, 14.2, 15.1, 15.2, ...

NVD-CWE-Other2017

CVE-2018-7793

HIGH

CVSS:8.7(High)

A Credential Management vulnerability exists in FoxView HMI SCADA (All Foxboro DCS, Foxboro Evo, and IA Series versions prior to Foxboro DCS Control Core Services 9.4 (CCS 9.4) and FoxView 10.5.) whic...

NVD-CWE-Other2018

CVE-2019-18386

HIGH

CVSS:8.7(High)

Systems management on Unisys ClearPath Forward Libra and ClearPath MCP Software Series can fault and have other unspecified impact when receiving specifically crafted message payloads over a systems m...

NVD-CWE-Other2019

CVE-2019-2598

HIGH

CVSS:8.7(High)

Vulnerability in the PeopleSoft Enterprise PeopleTools component of Oracle PeopleSoft Products (subcomponent: SQR). Supported versions that are affected are 8.55, 8.56 and 8.57. Easily exploitable vul...

NVD-CWE-Other2019

CVE-2017-10372

Vulnerability Description

Related Vulnerabilities

CVE-2016-0679

CVE-2017-10401

CVE-2017-3500

CVE-2018-7793

CVE-2019-18386

CVE-2019-2598