CVE-2016-0496

Unspecified vulnerability in the MICROS CWDirect component in Oracle Retail Applications 12.5, 13.0, 14.0, 15.0, 16.0, 17.0, and 18.0 allows remote attackers to affect confidentiality via unknown vectors related to Order Entry.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
4.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:P/I:N/A:N
oracleCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 65%
VendorProductVersion
oraclemicros_cwdirect
12.5
oraclemicros_cwdirect
13.0
oraclemicros_cwdirect
14.0
oraclemicros_cwdirect
15.0
oraclemicros_cwdirect
16.0
oraclemicros_cwdirect
17.0
oraclemicros_cwdirect
18.0
𝑥
= Vulnerable software versions
References
http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html
http://www.securitytracker.com/id/1034718
http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html
http://www.securitytracker.com/id/1034718