cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2020-14810,https://securityvulnerability.io/vulnerability/CVE-2020-14810,WebConnect Vulnerability in Oracle Hospitality Suite8,"An unauthenticated network access vulnerability exists in Oracle Hospitality Suite8's WebConnect component. Exploitation requires human interaction from a third party, allowing attackers to gain unauthorized update, insert, or delete access to data. This susceptibility could also enable unauthorized read access to certain data within the application, leading to significant data integrity and confidentiality concerns. It is essential to address this vulnerability to safeguard your Oracle Hospitality Suite8 environment.",Oracle,Hospitality Suite8,5.4,MEDIUM,0.0008999999845400453,false,,false,false,false,,,false,false,,2020-10-21T14:04:26.000Z,0
CVE-2020-14807,https://securityvulnerability.io/vulnerability/CVE-2020-14807,Unauthorized Access Vulnerability in Oracle Hospitality Suite8,"The vulnerability in Oracle Hospitality Suite8 allows an unauthenticated attacker with network access via HTTP to exploit the system. This issue requires interaction from a victim user other than the attacker, leading to unauthorized access to critical data. Successful exploitation can enable attackers to perform unauthorized actions such as updating, inserting, or deleting accessible data within the Oracle Hospitality Suite8 environment. This presents significant risks concerning data confidentiality and integrity.",Oracle,Hospitality Suite8,7.1,HIGH,0.0027000000700354576,false,,false,false,false,,,false,false,,2020-10-21T14:04:26.000Z,0
CVE-2019-2781,https://securityvulnerability.io/vulnerability/CVE-2019-2781,Vulnerability in Oracle Hospitality Suite8 XML Interface Component,"An exploitable vulnerability exists in the XML Interface component of Oracle Hospitality Suite8. This flaw allows low-privileged network attackers to gain unauthorized access to critical data. Affected versions include 8.9.6, 8.10.2, and versions 8.11 through 8.14. Successful exploitation can lead to the compromise of sensitive information, making it essential for organizations using this software to implement immediate security measures.",Oracle,Hospitality Suite8,6.5,MEDIUM,0.0008900000248104334,false,,false,false,false,,,false,false,,2019-07-23T23:15:00.000Z,0
CVE-2018-2827,https://securityvulnerability.io/vulnerability/CVE-2018-2827,,"Vulnerability in the Oracle Hospitality Suite8 component of Oracle Hospitality Applications (subcomponent: Profile). The supported version that is affected is 8.x. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Hospitality Suite8. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle Hospitality Suite8 accessible data as well as unauthorized update, insert or delete access to some of Oracle Hospitality Suite8 accessible data and unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle Hospitality Suite8. CVSS 3.0 Base Score 7.6 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:L/A:H).",Oracle,Hospitality Suite8,7.6,HIGH,0.0008900000248104334,false,,false,false,false,,,false,false,,2018-04-19T02:00:00.000Z,0
CVE-2017-10421,https://securityvulnerability.io/vulnerability/CVE-2017-10421,,Vulnerability in the Oracle Hospitality Suite8 component of Oracle Hospitality Applications (subcomponent: Leisure). Supported versions that are affected are 8.10.1 and 8.10.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Hospitality Suite8. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle Hospitality Suite8 accessible data. CVSS 3.0 Base Score 6.5 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N).,Oracle,Hospitality Suite8,6.5,MEDIUM,0.0006399999838322401,false,,false,false,false,,,false,false,,2017-10-19T17:00:00.000Z,0
CVE-2017-10337,https://securityvulnerability.io/vulnerability/CVE-2017-10337,,Vulnerability in the Oracle Hospitality Suite8 component of Oracle Hospitality Applications (subcomponent: Leisure). Supported versions that are affected are 8.10.1 and 8.10.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Hospitality Suite8. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Oracle Hospitality Suite8 accessible data and unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Hospitality Suite8. CVSS 3.0 Base Score 5.4 (Confidentiality and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L).,Oracle,Hospitality Suite8,5.4,MEDIUM,0.0005799999926239252,false,,false,false,false,,,false,false,,2017-10-19T17:00:00.000Z,0
CVE-2017-10318,https://securityvulnerability.io/vulnerability/CVE-2017-10318,,"Vulnerability in the Oracle Hospitality Suite8 component of Oracle Hospitality Applications (subcomponent: WebConnect). Supported versions that are affected are 8.10.1 and 8.10.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Hospitality Suite8. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Oracle Hospitality Suite8, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Oracle Hospitality Suite8 accessible data. CVSS 3.0 Base Score 4.7 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:N/A:N).",Oracle,Hospitality Suite8,4.7,MEDIUM,0.0006099999882280827,false,,false,false,false,,,false,false,,2017-10-19T17:00:00.000Z,0
CVE-2017-10389,https://securityvulnerability.io/vulnerability/CVE-2017-10389,,"Vulnerability in the Oracle Hospitality Suite8 component of Oracle Hospitality Applications (subcomponent: PMS). Supported versions that are affected are 8.10.1 and 8.10.2. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle Hospitality Suite8 executes to compromise Oracle Hospitality Suite8. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Oracle Hospitality Suite8, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Hospitality Suite8 accessible data as well as unauthorized read access to a subset of Oracle Hospitality Suite8 accessible data and unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Hospitality Suite8. CVSS 3.0 Base Score 5.7 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L).",Oracle,Hospitality Suite8,5.7,MEDIUM,0.00044999999227002263,false,,false,false,false,,,false,false,,2017-10-19T17:00:00.000Z,0
CVE-2017-10316,https://securityvulnerability.io/vulnerability/CVE-2017-10316,,Vulnerability in the Oracle Hospitality Suite8 component of Oracle Hospitality Applications (subcomponent: WebConnect). Supported versions that are affected are 8.10.1 and 8.10.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Hospitality Suite8. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle Hospitality Suite8 accessible data. CVSS 3.0 Base Score 6.5 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N).,Oracle,Hospitality Suite8,6.5,MEDIUM,0.0005000000237487257,false,,false,false,false,,,false,false,,2017-10-19T17:00:00.000Z,0
CVE-2017-10339,https://securityvulnerability.io/vulnerability/CVE-2017-10339,,Vulnerability in the Oracle Hospitality Suite8 component of Oracle Hospitality Applications (subcomponent: WebConnect). Supported versions that are affected are 8.10.1 and 8.10.2. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Hospitality Suite8. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle Hospitality Suite8 accessible data. CVSS 3.0 Base Score 5.9 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N).,Oracle,Hospitality Suite8,5.9,MEDIUM,0.0009699999936856329,false,,false,false,false,,,false,false,,2017-10-19T17:00:00.000Z,0
CVE-2017-10419,https://securityvulnerability.io/vulnerability/CVE-2017-10419,,"Vulnerability in the Oracle Hospitality Suite8 component of Oracle Hospitality Applications (subcomponent: PMS). Supported versions that are affected are 8.10.1 and 8.10.2. Easily exploitable vulnerability allows unauthenticated attacker with logon to the infrastructure where Oracle Hospitality Suite8 executes to compromise Oracle Hospitality Suite8. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Hospitality Suite8 accessible data as well as unauthorized read access to a subset of Oracle Hospitality Suite8 accessible data. CVSS 3.0 Base Score 5.1 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N).",Oracle,Hospitality Suite8,5.1,MEDIUM,0.000699999975040555,false,,false,false,false,,,false,false,,2017-10-19T17:00:00.000Z,0
CVE-2017-10420,https://securityvulnerability.io/vulnerability/CVE-2017-10420,,"Vulnerability in the Oracle Hospitality Suite8 component of Oracle Hospitality Applications (subcomponent: Leisure). Supported versions that are affected are 8.10.1 and 8.10.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Hospitality Suite8. While the vulnerability is in Oracle Hospitality Suite8, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Hospitality Suite8 accessible data and unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Hospitality Suite8. CVSS 3.0 Base Score 6.4 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:L).",Oracle,Hospitality Suite8,6.4,MEDIUM,0.0005200000014156103,false,,false,false,false,,,false,false,,2017-10-19T17:00:00.000Z,0
CVE-2017-10050,https://securityvulnerability.io/vulnerability/CVE-2017-10050,,"Vulnerability in the Oracle Hospitality Suite8 component of Oracle Hospitality Applications (subcomponent: WebConnect). Supported versions that are affected are 8.10.1 and 8.10.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Hospitality Suite8. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Oracle Hospitality Suite8, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle Hospitality Suite8 accessible data as well as unauthorized update, insert or delete access to some of Oracle Hospitality Suite8 accessible data. CVSS 3.0 Base Score 8.2 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:N).",Oracle,Hospitality Suite8,8.2,HIGH,0.001120000029914081,false,,false,false,false,,,false,false,,2017-10-19T17:00:00.000Z,0
CVE-2017-10317,https://securityvulnerability.io/vulnerability/CVE-2017-10317,,Vulnerability in the Oracle Hospitality Suite8 component of Oracle Hospitality Applications (subcomponent: WebConnect). Supported versions that are affected are 8.10.1 and 8.10.2. Easily exploitable vulnerability allows unauthenticated attacker with logon to the infrastructure where Oracle Hospitality Suite8 executes to compromise Oracle Hospitality Suite8. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Oracle Hospitality Suite8 accessible data. CVSS 3.0 Base Score 4.0 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N).,Oracle,Hospitality Suite8,4,MEDIUM,0.000539999979082495,false,,false,false,false,,,false,false,,2017-10-19T17:00:00.000Z,0
CVE-2017-10319,https://securityvulnerability.io/vulnerability/CVE-2017-10319,,Vulnerability in the Oracle Hospitality Suite8 component of Oracle Hospitality Applications (subcomponent: Leisure). Supported versions that are affected are 8.10.1 and 8.10.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Hospitality Suite8. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Oracle Hospitality Suite8 accessible data. CVSS 3.0 Base Score 5.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N).,Oracle,Hospitality Suite8,5.3,MEDIUM,0.0006000000284984708,false,,false,false,false,,,false,false,,2017-10-19T17:00:00.000Z,0
CVE-2017-10220,https://securityvulnerability.io/vulnerability/CVE-2017-10220,,Vulnerability in the Hospitality Property Interfaces component of Oracle Hospitality Applications (subcomponent: Parser). The supported version that is affected is 8.10.x. Easily exploitable vulnerability allows unauthenticated attacker with logon to the infrastructure where Hospitality Property Interfaces executes to compromise Hospitality Property Interfaces. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Hospitality Property Interfaces accessible data. CVSS 3.0 Base Score 4.0 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N).,Oracle,Hospitality Suite8 Property Interfaces,4,MEDIUM,0.0009299999801442027,false,,false,false,false,,,false,false,,2017-08-08T15:00:00.000Z,0
CVE-2017-10189,https://securityvulnerability.io/vulnerability/CVE-2017-10189,,Vulnerability in the Hospitality Suite8 component of Oracle Hospitality Applications (subcomponent: Leisure). The supported version that is affected is 8.10.x. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Hospitality Suite8 executes to compromise Hospitality Suite8. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Hospitality Suite8 accessible data. CVSS 3.0 Base Score 5.5 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N).,Oracle,Hospitality Suite8,5.5,MEDIUM,0.000750000006519258,false,,false,false,false,,,false,false,,2017-08-08T15:00:00.000Z,0
CVE-2017-10213,https://securityvulnerability.io/vulnerability/CVE-2017-10213,,Vulnerability in the Hospitality Suite8 component of Oracle Hospitality Applications (subcomponent: WebConnect). The supported version that is affected is 8.10.x. Easily exploitable vulnerability allows unauthenticated attacker with logon to the infrastructure where Hospitality Suite8 executes to compromise Hospitality Suite8. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Hospitality Suite8 accessible data. CVSS 3.0 Base Score 4.0 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N).,Oracle,Hospitality Suite8,4,MEDIUM,0.0009299999801442027,false,,false,false,false,,,false,false,,2017-08-08T15:00:00.000Z,0
CVE-2017-10211,https://securityvulnerability.io/vulnerability/CVE-2017-10211,,"Vulnerability in the Hospitality Suite8 component of Oracle Hospitality Applications (subcomponent: WebConnect). The supported version that is affected is 8.10.x. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Hospitality Suite8. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Hospitality Suite8, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Hospitality Suite8 accessible data as well as unauthorized read access to a subset of Hospitality Suite8 accessible data. CVSS 3.0 Base Score 6.1 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N).",Oracle,Hospitality Suite8,6.1,MEDIUM,0.001290000043809414,false,,false,false,false,,,false,false,,2017-08-08T15:00:00.000Z,0
CVE-2017-10216,https://securityvulnerability.io/vulnerability/CVE-2017-10216,,Vulnerability in the Hospitality Property Interfaces component of Oracle Hospitality Applications (subcomponent: Parser). The supported version that is affected is 8.10.x. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Hospitality Property Interfaces. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Hospitality Property Interfaces accessible data. CVSS 3.0 Base Score 6.5 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N).,Oracle,Hospitality Suite8 Property Interfaces,6.5,MEDIUM,0.0009599999757483602,false,,false,false,false,,,false,false,,2017-08-08T15:00:00.000Z,0
CVE-2017-10212,https://securityvulnerability.io/vulnerability/CVE-2017-10212,,Vulnerability in the Hospitality Suite8 component of Oracle Hospitality Applications (subcomponent: WebConnect). The supported version that is affected is 8.10.x. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Hospitality Suite8. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Hospitality Suite8 accessible data. CVSS 3.0 Base Score 6.5 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N).,Oracle,Hospitality Suite8,6.5,MEDIUM,0.0009599999757483602,false,,false,false,false,,,false,false,,2017-08-08T15:00:00.000Z,0