CNNVD-202507-1999 Information
CNNVD ID
CNNVD-202507-1999
Related CVE
- CNNVD Published: 2025-07-15
Description (Chinese)
Oracle E-Business Suite是美国甲骨文(Oracle)公司的一套全面集成式的全球业务管理软件。该软件提供了客户关系管理、服务管理、财务管理等功能。 Oracle E-Business Suite的Oracle Applications Framework 12.2.3至12.2.14版本存在安全漏洞,该漏洞源于网络访问控制不当,可能导致数据未经授权修改或读取。
Description (English)
Oracle E-Business Suite is a fully integrated global business management software package for Oracle. The software provides functions such as customer relationship management, service management and financial management. Security gaps exist in Oracle E-Business Suite versions 12.2.3 to 12.2.14, which stem from inadequate network access controls and may lead to unauthorized data modification or reading.
Hazard Level
High
Vulnerability Type
访问控制错误
Affected Vendor
OrangeHRM
Published
2025-07-15
Last Modified
2026-02-24
References
https://www.oracle.com/security-alerts/cpujul2025.html https://nvd.nist.gov/vuln/detail/CVE-2025-50071
Patch
https://www.oracle.com/security-alerts/cpujul2025.html
Share on: