CVE-2020-14708

CVSS 4.3 · Medium EPSS 0.20% · P42 Updated Feb 24, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2020-14708

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Vulnerability in the Customer Management and Segmentation Foundation product of Oracle Retail Applications (component: Segment). Supported versions that are affected are 16.0, 17.0 and 18.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Customer Management and Segmentation Foundation. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Customer Management and Segmentation Foundation accessible data. CVSS 3.1 Base Score 4.3 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N).

Source: NVD (National Vulnerability Database)

CVSS Information

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Oracle Retail Applications Customer Management and Segmentation Foundation 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Oracle Retail Applications是美国甲骨文（Oracle）公司的一套零售应用商店解决方案。该产品包括库存管理、销售管理和客户管理等。Retail Customer Management and Segmentation Foundation是其中的一个零售客户管理组件。 Oracle Retail Applications中的Customer Management and Segmentation Foundation 16.0版本、17.0版本和18.0版本的Segment组件存在

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
Oracle Corporation	Retail Customer Management and Segmentation Foundation	16.0	-

II. Public POCs for CVE-2020-14708

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2020-14708

请登录查看更多情报信息。

Same Patch Batch · Oracle Corporation · 2020-07-15 · 212 CVEs total

CVE-2020-14701	10.0 CRITICAL	Oracle Communications Applications SD-WAN Aware 安全漏洞
CVE-2020-14606	10.0 CRITICAL	Oracle Communications Applications SD-WAN Edge 安全漏洞
CVE-2020-14645	9.8 CRITICAL	Oracle Fusion Middleware WebLogic Server Core组件安全漏洞
CVE-2020-14644	9.8 CRITICAL	Oracle Fusion Middleware WebLogic Server 安全漏洞
CVE-2020-14625	9.8 CRITICAL	Oracle Fusion Middleware WebLogic Server 安全漏洞
CVE-2020-14687	9.8 CRITICAL	Oracle Fusion Middleware WebLogic Server 安全漏洞
CVE-2020-14705	9.6 CRITICAL	Oracle GoldenGate 安全漏洞
CVE-2020-14599	9.1 CRITICAL	Oracle E-Business Suite CRM Gateway for Mobile Devices 安全漏洞
CVE-2020-14665	9.1 CRITICAL	Oracle E-Business Suite Trade Management 安全漏洞
CVE-2020-14658	9.1 CRITICAL	Oracle E-Business Suite Marketing 安全漏洞
CVE-2020-14598	9.1 CRITICAL	Oracle E-Business Suite CRM Gateway for Mobile Devices 安全漏洞
CVE-2020-14611	8.6 HIGH	Oracle Fusion Middleware WebCenter Portal 安全漏洞
CVE-2020-14609	8.6 HIGH	Oracle Fusion Middleware Business Intelligence Enterprise Edition Analytics Web Answers组件安
CVE-2020-14664	8.3 HIGH	Oracle Java SE JavaFX组件安全漏洞
CVE-2020-14583	8.3 HIGH	Oracle GraalVM 安全漏洞
CVE-2020-14595	8.2 HIGH	Oracle iLearning Assessment Manager组件安全漏洞
CVE-2020-14666	8.2 HIGH	Oracle E-Business Suite Email Center 安全漏洞
CVE-2020-14596	8.2 HIGH	Oracle E-Business Suite iStore 跨站脚本漏洞
CVE-2020-14688	8.2 HIGH	Oracle E-Business Suite Common Applications 安全漏洞
CVE-2020-14690	8.2 HIGH	Oracle Fusion Middleware Business Intelligence Enterprise Edition 安全漏洞

Showing top 20 of 212 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: Retail Customer Management and Segmentation Foundation

Same vendor: Oracle Corporation

V. Comments for CVE-2020-14708

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2020-14708

I. Basic Information for CVE-2020-14708

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2020-14708

III. Intelligence Information for CVE-2020-14708

Same Patch Batch · Oracle Corporation · 2020-07-15 · 212 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2020-14708

Leave a comment