Oracle E-Business Suite Oracle Applications Manager Application Logging Interfaces Vulnerability

Vulnerability

A vulnerability exists in the Oracle Applications Manager component of Oracle E-Business Suite, specifically in versions 12.2.3 through 12.2.14. This vulnerability allows an unauthenticated attacker with network access via HTTP to compromise Oracle Applications Manager. Exploitation of this vulnerability requires human interaction from a third party. While the issue is contained within Oracle Applications Manager, successful attacks could significantly affect other products, leading to a scope change. The vulnerability allows unauthorized users to update, insert, or delete certain accessible data within Oracle Applications Manager, as well as to read a subset of that data without authorization.

Impact

Exploitation of this vulnerability could result in unauthorized access to read, update, insert, or delete data within Oracle Applications Manager, with potential significant impacts on additional products.

Added: Oct 21, 2025, 9:43 PM

Updated: Oct 21, 2025, 9:43 PM

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

5.0

exploitability

6.0

remediation

0.0

relevance

0.8

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

5.0

exploitability

6.0

remediation

0.0

relevance

0.8

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Oracle E-Business Suite Oracle Applications Manager Application Logging Interfaces Vulnerability

Vulnerability

Impact

Affected Products

Oracle Applications Manager

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating