CNNVD-202507-1998 Information
CNNVD ID
CNNVD-202507-1998
Related CVE
- CNNVD Published: 2025-07-15
Description (Chinese)
Oracle E-Business Suite是美国甲骨文(Oracle)公司的一套全面集成式的全球业务管理软件。该软件提供了客户关系管理、服务管理、财务管理等功能。 Oracle E-Business Suite的Oracle iStore 12.2.3至12.2.14版本存在安全漏洞,该漏洞源于未经验证的攻击者可通过HTTP网络访问进行攻击,可能导致数据未授权访问和修改。
Description (English)
Oracle E-Business Suite is a fully integrated global business management software package for Oracle. The software provides functions such as customer relationship management, service management and financial management. The Oracle iStore version of Oracle E-Businness Suite contains a security loophole, which stems from the uncertified attackers ’ access to the HTTP network, which may lead to unauthorized data access and modification.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
OrangeHRM
Published
2025-07-15
Last Modified
2026-02-24
References
https://www.oracle.com/security-alerts/cpujul2025.html https://nvd.nist.gov/vuln/detail/CVE-2025-30746
Patch
https://www.oracle.com/security-alerts/cpujul2025.html
Share on: