cvelist/2020/14xxx/CVE-2020-14783.json

{
    "data_type": "CVE",
    "data_format": "MITRE",
    "data_version": "4.0",
    "CVE_data_meta": {
        "ASSIGNER": "secalert_us@oracle.com",
        "ID": "CVE-2020-14783",
        "STATE": "PUBLIC"
    },
    "affects": {
        "vendor": {
            "vendor_data": [
                {
                    "product": {
                        "product_data": [
                            {
                                "product_name": "Hospitality RES 3700",
                                "version": {
                                    "version_data": [
                                        {
                                            "version_value": "5.7",
                                            "version_affected": "="
                                        }
                                    ]
                                }
                            }
                        ]
                    },
                    "vendor_name": "Oracle Corporation"
                }
            ]
        }
    },
    "description": {
        "description_data": [
            {
                "lang": "eng",
                "value": "Vulnerability in the Oracle Hospitality RES 3700 product of Oracle Food and Beverage Applications (component: CAL). The supported version that is affected is 5.7. Easily exploitable vulnerability allows unauthenticated attacker with network access via TCP to compromise Oracle Hospitality RES 3700. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Oracle Hospitality RES 3700 accessible data. CVSS 3.1 Base Score 5.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)."
            }
        ]
    },
    "impact": {
        "cvss": {
            "baseScore": "5.3",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
        }
    },
    "problemtype": {
        "problemtype_data": [
            {
                "description": [
                    {
                        "lang": "eng",
                        "value": "Easily exploitable vulnerability allows unauthenticated attacker with network access via TCP to compromise Oracle Hospitality RES 3700.  Successful attacks of this vulnerability can result in  unauthorized read access to a subset of Oracle Hospitality RES 3700 accessible data."
                    }
                ]
            }
        ]
    },
    "references": {
        "reference_data": [
            {
                "url": "https://www.oracle.com/security-alerts/cpuoct2020.html",
                "refsource": "MISC",
                "name": "https://www.oracle.com/security-alerts/cpuoct2020.html"
            }
        ]
    }
}