CNNVD-202510-2692 Information
CNNVD ID
CNNVD-202510-2692
Related CVE
- CNNVD Published: 2025-10-21
Description (Chinese)
Oracle Financial Services Applications是美国甲骨文(Oracle)公司的一套金融服务软件。该产品包括核心银行、网上银行和财产管理等。 Oracle Financial Services Applications的Oracle Financial Services Revenue Management and Billing 2.9.0.0.0版本至7.2.0.0.0版本存在安全漏洞,该漏洞源于高权限攻击者可通过HTTP网络访问进行攻击,可能导致关键数据未授权访问。
Description (English)
Oracle Financial Services Applications is a financial services software package for Oracle. The product includes core banking, online banking and property management. The Oracle Financial Services Applications Review Management and Billing versions 2.9.0.0.0.0 to 7.2.0.0 have a security gap, which stems from the fact that high-authorized attackers can attack through the HTTP network, which may lead to unauthorized access to key data.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
甲骨文
Published
2025-10-21
Last Modified
2026-02-24
References
https://www.oracle.com/security-alerts/cpuoct2025.html https://access.redhat.com/security/cve/cve-2025-50074
Patch
https://www.oracle.com/security-alerts/cpuoct2025.html
Share on: