CVE-2020-2648

Vulnerability in the Oracle Retail Customer Management and Segmentation Foundation product of Oracle Retail Applications (component: Internal Operations). The supported version that is affected is 16.0. Easily exploitable vulnerability allows physical access to compromise Oracle Retail Customer Management and Segmentation Foundation. Successful attacks of this vulnerability can result in takeover of Oracle Retail Customer Management and Segmentation Foundation. CVSS 3.0 Base Score 6.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:P/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H).

Published: Jan 15, 2020
Updated: Apr 14, 2023
CVE: CVE-2020-2648
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 6.2
AV:P/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

CVSS v2:

Severity: Low
Score: 4.6
AV:L/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
oracle / retail_customer_management_and_segmentation_foundation	16.0	16.0.x

https://www.oracle.com/security-alerts/cpujan2020.html

Vulnerability Database

289,599

CVE-2020-2648