CNNVD-202510-2694 Information

Oct 21, 2025 cve

CNNVD ID

CNNVD-202510-2694

CVE-2025-50075

  • CNNVD Published: 2025-10-21

Description (Chinese)

Oracle Financial Services Applications是美国甲骨文(Oracle)公司的一套金融服务软件。该产品包括核心银行、网上银行和财产管理等。 Oracle Financial Services Applications的Oracle Financial Services Revenue Management and Billing 2.9.0.0.0版本至7.2.0.0.0版本存在安全漏洞,该漏洞源于低权限攻击者可通过HTTP网络访问进行攻击,可能导致未经授权访问关键数据或完全访问所有数据。

Description (English)

Oracle Financial Services Applications is a financial services software package for Oracle. The product includes core banking, online banking and property management. The Oracle Financial Services Applications Review Management and Billing Versions 2.9.0.0.0.0 to 7.2.0.0 have a security loophole, which stems from the fact that low-authority attackers can attack through the HTTP network, which may result in unauthorized access to key data or full access to all data.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

甲骨文

Published

2025-10-21

Last Modified

2026-02-24

References

https://access.redhat.com/security/cve/cve-2025-50075 https://www.oracle.com/security-alerts/cpuoct2025.html

Patch

https://www.oracle.com/security-alerts/cpuoct2025.html

Share on: