Sign In

CVE-2025-53037

📊 9.8 CRITICAL0.1%🎯 0 exploits
📅 Published Oct 21, 2025
📋 Status: Analyzed

Vulnerability in the Oracle Financial Services Analytical Applications Infrastructure product of Oracle Financial Services Applications (component: Platform). Supported versions that are affected are 8.0.7.9, 8.0.8.7 and 8.1.2.5. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Financial Services Analytical Applications Infrastructure. Successful attacks of this vulnerability can result in takeover of Oracle Financial Services Analytical Applications Infrastructure. CVSS 3.1 Base Score 9.8 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H).

🎯 Affected Products & Systems

3 product configurations affected

Filter by type:
📱
Vulnerable
Version: 8.0.7.9.0
CPE:
cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.0.7.9.0:*:*:*:*:*:*:*
📱
Vulnerable
Version: 8.0.8.7.0
CPE:
cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.0.8.7.0:*:*:*:*:*:*:*
📱
Vulnerable
Version: 8.1.2.5.0
CPE:
cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:8.1.2.5.0:*:*:*:*:*:*:*
Metrics
9.8 CRITICALCVSS v3.1[email protected]
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack Vector:
NETWORK
Complexity:
LOW
Privileges:
NONE
User Interaction:
NONE
Confidentiality:
HIGH
Integrity:
HIGH
Availability:
HIGH
Scope:
UNCHANGED

🔍 Technical Details

Analysis Status
Analyzed
CVSS Details
9.8 (CRITICAL)v3.1
Source: [email protected]
EPSS Details
0.1% (Minimal)30.9th percentile
Last updated: Oct 31, 2025
Exploitation probability within 30 days
Published Date
Oct 21, 2025 (11 days ago)
Last Modified
Oct 23, 2025 (9 days ago)
Security Weaknesses1
References2