Oracle Life Sciences InForm Web Server Vulnerability Allowing Unauthorized Data Access

Vulnerability

A vulnerability has been identified in Oracle Life Sciences InForm version 7.0.1.0, specifically within the Web Server component. This easily exploitable issue allows a low-privileged attacker with network access via HTTP to compromise the application. Successful exploitation can lead to unauthorized read access to a subset of accessible data within Oracle Life Sciences InForm.

Impact

Exploitation of this vulnerability could result in unauthorized access to certain data within Oracle Life Sciences InForm.

Added: Oct 21, 2025, 9:04 PM

Updated: Oct 21, 2025, 9:04 PM

Vulnerability Rating

Custom Algorithm

spread

1.4

impact

2.5

exploitability

4.9

remediation

0.0

relevance

0.8

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

1.4

impact

2.5

exploitability

4.9

remediation

0.0

relevance

0.8

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Oracle Life Sciences InForm Web Server Vulnerability Allowing Unauthorized Data Access

Vulnerability

Impact

Affected Products

Oracle Life Sciences InForm

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating