Vulnerability Details : CVE-2016-5540
Unspecified vulnerability in the Oracle Retail Xstore Payment component in Oracle Retail Applications 1.x allows local users to affect confidentiality and integrity via unknown vectors.
Exploit prediction scoring system (EPSS) score for CVE-2016-5540
Probability of exploitation activity in the next 30 days: 0.04%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 8 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2016-5540
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
3.3
|
LOW | AV:L/AC:M/Au:N/C:P/I:P/A:N |
3.4
|
4.9
|
NIST |
6.7
|
MEDIUM | CVSS:3.0/AV:P/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N |
0.4
|
5.8
|
NIST |
CWE ids for CVE-2016-5540
-
Assigned by: nvd@nist.gov (Primary)
References for CVE-2016-5540
-
http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html
Oracle Critical Patch Update - October 2016Patch;Vendor Advisory
-
http://www.securityfocus.com/bid/93657
Oracle Retail Xstore Payment CVE-2016-5540 Local Security Vulnerability
Products affected by CVE-2016-5540
- cpe:2.3:a:oracle:micros_xstore_payment:1.0:*:*:*:*:*:*:*