Oracle Siebel CRM User Interface Unauthenticated Data Exposure Vulnerability

Vulnerability

An easily exploitable vulnerability has been identified in the Oracle Siebel CRM End User product, specifically in versions 25.0 through 25.5. This vulnerability allows an unauthenticated attacker with network access via HTTP to compromise the Siebel CRM End User interface. Successful exploitation can lead to unauthorized read access to certain data within the Siebel CRM End User environment.

Impact

Exploitation of this vulnerability could result in unauthorized access to a portion of data accessible to the Siebel CRM End User.

Added: Jul 15, 2025, 11:07 PM

Updated: Jul 15, 2025, 11:07 PM

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

2.5

exploitability

7.0

remediation

0.0

relevance

0.3

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

2.5

exploitability

7.0

remediation

0.0

relevance

0.3

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Oracle Siebel CRM User Interface Unauthenticated Data Exposure Vulnerability

Vulnerability

Impact

Affected Products

Oracle Siebel CRM

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating