CVE-2017-10353

Name of the Vulnerable Software and Affected Versions Oracle Hospitality Hotel Mobile version 1.1

Description The issue allows a low-privileged attacker with network access via HTTP to compromise Oracle Hospitality Hotel Mobile, resulting in unauthorized access to critical data or complete access to all accessible data. It also allows for a partial denial of service (DOS) of Oracle Hospitality Hotel Mobile.

Recommendations For version 1.1, update to a version that includes a fix for this issue, as the current version is easily exploitable and can lead to significant security breaches.