Oracle Financial Services Revenue Management and Billing Security Management System Vulnerability Allowing Unauthorized Data Access

Vulnerability

A vulnerability has been identified in the Oracle Financial Services Revenue Management and Billing product, specifically within the Security Management System component. This issue affects supported versions 2.9.0.0.0 through 7.2.0.0.0. The vulnerability is easily exploitable, allowing a low-privileged attacker with network access via HTTP to compromise the application. Successful exploitation can lead to unauthorized access to critical data or complete access to all data accessible within Oracle Financial Services Revenue Management and Billing.

Impact

Exploitation of this vulnerability can result in unauthorized access to critical data or complete access to all data within Oracle Financial Services Revenue Management and Billing that is accessible to the user.

Added: Oct 21, 2025, 8:37 PM

Updated: Oct 21, 2025, 8:37 PM

Vulnerability Rating

Custom Algorithm

spread

1.9

impact

2.5

exploitability

5.2

remediation

0.0

relevance

0.8

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

1.9

impact

2.5

exploitability

5.2

remediation

0.0

relevance

0.8

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Oracle Financial Services Revenue Management and Billing Security Management System Vulnerability Allowing Unauthorized Data Access

Vulnerability

Impact

Affected Products

Oracle Financial Services Revenue Management and Billing

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating