N/A

Vulnerability in the Oracle Hospitality Simphony component of Oracle Food and Beverage Applications. The supported version that is affected is 18.2.1. Easily exploitable vulnerability allows low privileged attacker having Import/Export privilege with network access via HTTP to compromise Oracle Hospitality Simphony. While the vulnerability is in Oracle Hospitality Simphony, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle Hospitality Simphony accessible data. CVSS 3.0 Base Score 7.7 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N).

N/A

N/A

Oracle Food and Beverage Applications Hospitality Simphony组件访问控制错误漏洞

Oracle Food and Beverage Applications是美国甲骨文（Oracle）公司的一套餐饮销售管理解决方案。Hospitality Simphony是其中的一个基于云的移动餐饮销售组件。 Oracle Food and Beverage Applications中的Hospitality Simphony组件18.2.1版本中存在安全漏洞。攻击者可利用该漏洞未授权访问数据，影响数据的保密性。

N/A

N/A