CNNVD-202507-2000 Information
CNNVD ID
CNNVD-202507-2000
Related CVE
- CNNVD Published: 2025-07-15
Description (Chinese)
Oracle E-Business Suite是美国甲骨文(Oracle)公司的一套全面集成式的全球业务管理软件。该软件提供了客户关系管理、服务管理、财务管理等功能。 Oracle E-Business Suite的Oracle Universal Work Queue 12.2.3至12.2.14版本存在安全漏洞,该漏洞源于工作提供者管理组件存在缺陷,可能导致关键数据被未授权访问或修改。
Description (English)
Oracle E-Business Suite is a fully integrated global business management software package for Oracle. The software provides functions such as customer relationship management, service management and financial management. There is a security loophole in Oracle E-Business Suite versions 12.2.3 to 12.2.14 of Oracle Universal World Queue, which stems from deficiencies in the work provider management component, which may lead to unauthorized access to or modification of key data.
Hazard Level
Medium
Vulnerability Type
访问控制错误
Affected Vendor
OrangeHRM
Published
2025-07-15
Last Modified
2026-02-24
References
https://www.oracle.com/security-alerts/cpujul2025.html https://nvd.nist.gov/vuln/detail/CVE-2025-50105
Patch
https://www.oracle.com/security-alerts/cpujul2025.html
Share on: