CNNVD-202507-1985 Information
CNNVD ID
CNNVD-202507-1985
Related CVE
- CNNVD Published: 2025-07-15
Description (Chinese)
Oracle Hyperion是美国甲骨文(Oracle)公司的一套财务建模应用软件。该软件提供财务结算、报表制作等功能。Hyperion Financial Reporting是其中的一个财务报表管理组件。 Oracle Hyperion的Oracle Hyperion Financial Reporting 11.2.20.0.000版本存在安全漏洞,该漏洞源于工作区组件存在缺陷,可能导致部分数据被未授权访问或修改。
Description (English)
Oracle Hyperion is a financial modelling application for Oracle. The software provides functionality such as financial closure, report production, etc. Hyperion Financial Reporting is a financial statement management component. There is a security loophole in Oracle Hyperion version of Financial Reporting 11.2.2.0.000, which stems from deficiencies in the work area components, which may lead to unauthorized access to or modification of some data.
Hazard Level
High
Vulnerability Type
访问控制错误
Affected Vendor
OrangeHRM
Published
2025-07-15
Last Modified
2026-02-24
References
https://www.oracle.com/security-alerts/cpujul2025.html https://nvd.nist.gov/vuln/detail/CVE-2025-50108
Patch
https://www.oracle.com/security-alerts/cpujul2025.html
Share on: