Oracle Hyperion Smart View for Office Core Component Vulnerability Allowing Unauthorized Data Access and Modification

Vulnerability

A vulnerability has been identified in Oracle Smart View for Office, specifically within the Oracle Hyperion Core Smart View component. This vulnerability affects version 24.200 and allows a high-privileged attacker with network access via HTTP to compromise the application. Exploitation of this vulnerability is difficult and requires human interaction from a third party. Successful attacks could lead to unauthorized creation, deletion, or modification of critical data, as well as unauthorized access to all data accessible through Oracle Smart View for Office.

Impact

Exploitation of this vulnerability could result in unauthorized access to critical data or complete access to all data available through Oracle Smart View for Office, along with the ability to unauthorizedly create, delete, or modify such data.

Added: Sep 1, 2025, 7:22 PM

Updated: Sep 1, 2025, 7:22 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

4.5

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

4.5

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Oracle Hyperion Smart View for Office Core Component Vulnerability Allowing Unauthorized Data Access and Modification

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating