cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-21136,https://securityvulnerability.io/vulnerability/CVE-2024-21136,Unauthorized Access Vulnerability in Oracle Retail Xstore Office,"A critical vulnerability has been identified in Oracle Retail Xstore Office, allowing unauthenticated attackers with network access via HTTP to breach the system. This security flaw, present in several supported versions, enables attackers to potentially gain unauthorized access to critical and sensitive data stored within the application. Given the severity of this vulnerability, successful exploitation could lead to far-reaching consequences, impacting not only the Xstore Office but also other connected Oracle systems. Organizations using affected versions of Oracle Retail Xstore Office should prioritize patching to safeguard against possible data breaches and ensure the security of their retail operations.",Oracle Retail,Retail Xstore Office,8.6,HIGH,0.0004299999854993075,false,false,false,false,,false,false,2024-07-16T23:15:00.000Z,0
CVE-2018-3300,https://securityvulnerability.io/vulnerability/CVE-2018-3300,,"Vulnerability in the Oracle Retail Xstore Office product of Oracle Retail Applications (component: Internal Operations). The supported version that is affected is 7.1. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Retail Xstore Office. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Retail Xstore Office accessible data as well as unauthorized read access to a subset of Oracle Retail Xstore Office accessible data. CVSS 3.0 Base Score 5.4 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N).",Oracle,Retail Xstore Office,5.4,MEDIUM,0.000539999979082495,false,false,false,false,,false,false,2019-10-16T17:40:49.000Z,0
CVE-2018-3111,https://securityvulnerability.io/vulnerability/CVE-2018-3111,,"Vulnerability in the Oracle Retail Xstore Office component of Oracle Retail Applications (subcomponent: Internal Operations). The supported version that is affected is 7.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Retail Xstore Office. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle Retail Xstore Office accessible data as well as unauthorized update, insert or delete access to some of Oracle Retail Xstore Office accessible data and unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Retail Xstore Office. CVSS 3.0 Base Score 7.6 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:L).",Oracle,Retail Xstore Office,7.6,HIGH,0.003120000008493662,false,false,false,false,,false,false,2019-07-23T23:15:00.000Z,0
CVE-2018-2883,https://securityvulnerability.io/vulnerability/CVE-2018-2883,,"Vulnerability in the Oracle Retail Xstore Office component of Oracle Retail Applications (subcomponent: Internal Operations). Supported versions that are affected are 7.0 and 7.1. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Retail Xstore Office. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Retail Xstore Office accessible data as well as unauthorized read access to a subset of Oracle Retail Xstore Office accessible data and unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Retail Xstore Office. CVSS 3.0 Base Score 5.5 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L).",Oracle,Retail Xstore Office,5.5,MEDIUM,0.0005300000193528831,false,false,false,false,,false,false,2019-07-23T23:15:00.000Z,0
CVE-2019-2561,https://securityvulnerability.io/vulnerability/CVE-2019-2561,,"Vulnerability in the Oracle Retail Xstore Office component of Oracle Retail Applications (subcomponent: Internal Operations). Supported versions that are affected are 7.0 and 7.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Retail Xstore Office. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle Retail Xstore Office accessible data as well as unauthorized update, insert or delete access to some of Oracle Retail Xstore Office accessible data. CVSS 3.0 Base Score 8.2 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N).",Oracle,Retail Xstore Office,8.2,HIGH,0.0025400000158697367,false,false,false,false,,false,false,2019-07-23T23:15:00.000Z,0