cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2019-2424,https://securityvulnerability.io/vulnerability/CVE-2019-2424,Unauthenticated Access Vulnerability in Oracle Retail Applications,"This vulnerability affects the Oracle Retail Convenience Store Back Office component of Oracle Retail Applications, specifically in its Level 3 Maintenance Functions. An unauthenticated attacker with network access via HTTP can exploit this vulnerability, potentially resulting in unauthorized updates, inserts, or deletions of certain data within the system. Additionally, it enables unauthorized read access to some of the accessible data and may lead to a partial denial of service, compromising the functionality of the Oracle Retail Convenience Store Back Office.",Oracle,Retail Convenience Store Back Office,7.3,HIGH,0.0008299999753944576,false,,false,false,false,,,false,false,,2019-04-23T18:16:38.000Z,0
CVE-2018-2861,https://securityvulnerability.io/vulnerability/CVE-2018-2861,,"Vulnerability in the Oracle Retail Back Office component of Oracle Retail Applications (subcomponent: Security). Supported versions that are affected are 13.4.9, 14.0.4 and 14.1.3. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Retail Back Office. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Oracle Retail Back Office accessible data and unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Retail Back Office. CVSS 3.0 Base Score 6.5 (Confidentiality and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L).",Oracle,Retail Back Office,6.5,MEDIUM,0.0005600000149570405,false,,false,false,false,,,false,false,,2018-04-19T02:00:00.000Z,0
CVE-2017-10423,https://securityvulnerability.io/vulnerability/CVE-2017-10423,,"Vulnerability in the Oracle Retail Back Office component of Oracle Retail Applications (subcomponent: Security). Supported versions that are affected are 13.2, 13.3, 13.4, 14.0 and 14.1. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Retail Back Office. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Oracle Retail Back Office, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Retail Back Office accessible data as well as unauthorized read access to a subset of Oracle Retail Back Office accessible data. CVSS 3.0 Base Score 5.4 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N).",Oracle,Retail Back Office,5.4,MEDIUM,0.0006799999973736703,false,,false,false,false,,,false,false,,2017-10-19T17:00:00.000Z,0