Oracle · Oracle E-Business Suite · CVE-2025-30692
**Name of the Vulnerable Software and Affected Versions**
Oracle E-Business Suite versions 12.2.7 through 12.2.14
**Description**
The issue allows a low-privileged attacker with network access via HTTP to compromise the Oracle iSupplier Portal, resulting in unauthorized access to critical data or complete access to all accessible data.
**Recommendations**
For versions 12.2.7 through 12.2.14, update to a version that includes the fix for this issue to prevent exploitation.
At the moment, there is no information about a newer version that contains a fix for this vulnerability.