First published: Wed Oct 21 2020(Updated: )
Vulnerability in the Oracle Retail Customer Management and Segmentation Foundation product of Oracle Retail Applications (component: Promotions). The supported version that is affected is 19.0. Difficult to exploit vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Retail Customer Management and Segmentation Foundation. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Oracle Retail Customer Management and Segmentation Foundation accessible data. CVSS 3.1 Base Score 3.1 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N).
Credit: secalert_us@oracle.com
Affected Software | Affected Version | How to fix |
---|---|---|
Oracle Retail Customer Management and Segmentation Foundation | =19.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2020-14732 is a vulnerability found in the Oracle Retail Customer Management and Segmentation Foundation product of Oracle Retail Applications. It has a severity level of low.
CVE-2020-14732 affects the Oracle Retail Customer Management and Segmentation Foundation product by allowing a low privileged attacker with network access via HTTP to compromise the system.
The severity of CVE-2020-14732 is low, with a severity value of 3.1.
To fix CVE-2020-14732, it is recommended to apply the necessary security patches provided by Oracle.
You can find more information about CVE-2020-14732 on Oracle's security alerts page: https://www.oracle.com/security-alerts/cpuoct2020.html