Main Vulnerability Database Vulnerabilities #VU117469

Improper input validation in Oracle Financial Services Revenue Management and Billing - CVE-2025-50075

Published: October 22, 2025

Vulnerability identifier: #VU117469

CSH Severity: Medium

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Green

CVE-ID: CVE-2025-50075

CWE-ID: CWE-20

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vendor: Oracle

Affected software:
Oracle Financial Services Revenue Management and Billing

Detailed vulnerability description

The vulnerability allows a remote authenticated user to gain access to sensitive information.

The vulnerability exists due to improper input validation within the Security Management System component in Oracle Financial Services Revenue Management and Billing. A remote authenticated user can exploit this vulnerability to gain access to sensitive information.

How to mitigate CVE-2025-50075

Install updates from vendor's website.

Sources

https://www.oracle.com/security-alerts/cpuoct2025.html

Improper input validation in Oracle Financial Services Revenue Management and Billing - CVE-2025-50075

Detailed vulnerability description

How to mitigate CVE-2025-50075

Sources

Please verify you're human