CVE-2018-2882

Name of the Vulnerable Software and Affected Versions Oracle Retail Applications versions 10.2.x through 13.1.x

Description The issue allows a low-privileged attacker with network access via HTTP to compromise the MICROS Retail-J component. Successful attacks can result in unauthorized access to critical data, including creation, deletion, or modification of data. The impact of this issue may extend beyond the MICROS Retail-J component, affecting additional products.

Recommendations For versions 10.2.x through 13.1.x, update to a version that includes a fix for this issue to prevent unauthorized access and modification of critical data. At the moment, there is no information about a newer version that contains a fix for this vulnerability.