CNNVD-202507-2076 Information
CNNVD ID
CNNVD-202507-2076
Related CVE
- CNNVD Published: 2025-07-15
Description (Chinese)
Oracle Database Server是美国甲骨文(Oracle)公司的一套关系数据库管理系统。该数据库管理系统提供数据管理、分布式处理等功能。 Oracle Database Server的Oracle Database Server JDBC 23.4至23.8版本存在安全漏洞,该漏洞源于容易受到低权限攻击者利用,可能导致未经授权访问关键数据。
Description (English)
Oracle Database Server is a relationship database management system for Oracle. The database management system provides data management, distributed processing and so on. Oracle DataServer 23.4-23.8 versions of Oracle DataServer JDBC contain a security loophole, which stems from their vulnerability to low-authorized attackers and may lead to unauthorized access to key data.
Hazard Level
High
Vulnerability Type
访问控制错误
Affected Vendor
OrangeHRM
Published
2025-07-15
Last Modified
2026-02-24
References
https://www.oracle.com/security-alerts/cpujul2025.html https://nvd.nist.gov/vuln/detail/CVE-2025-50070
Patch
https://www.oracle.com/security-alerts/cpujul2025.html
Share on: