Main Vulnerability Database Vulnerabilities #VU117471

#VU117471 Improper input validation in Oracle Financial Services Revenue Management and Billing - CVE-2025-50074

Published: October 22, 2025

Vulnerability identifier: #VU117471

Vulnerability risk: Medium

CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Green

CVE-ID: CVE-2025-50074

CWE-ID: CWE-20

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vulnerable software:
Oracle Financial Services Revenue Management and Billing

Software vendor:
Oracle

Description

The vulnerability allows a remote privileged user to gain access to sensitive information.

The vulnerability exists due to improper input validation within the Security Management System component in Oracle Financial Services Revenue Management and Billing. A remote privileged user can exploit this vulnerability to gain access to sensitive information.

Remediation

Install updates from vendor's website.

External links

https://www.oracle.com/security-alerts/cpuoct2025.html

#VU117471 Improper input validation in Oracle Financial Services Revenue Management and Billing - CVE-2025-50074

Description

Remediation

External links

Please verify you're human