PT-2025-16470 · Oracle · Oracle Smart View For Office
Abhijit Gaikwad
+1
·
Published
2025-04-15
·
Updated
2025-04-15
·
CVE-2025-30737
CVSS v3.1
5.7
Medium
| Vector | AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:N |
Name of the Vulnerable Software and Affected Versions
Oracle Smart View for Office version 24.200
Description
The issue allows a high privileged attacker with network access via HTTP to compromise Oracle Smart View for Office. Successful attacks require human interaction from a person other than the attacker and can result in unauthorized creation, deletion, or modification access to critical data or all Oracle Smart View for Office accessible data, as well as unauthorized access to critical data or complete access to all Oracle Smart View for Office accessible data.
Recommendations
For version 24.200, update to a version that contains a fix for this issue, as the current version is affected and can be exploited. At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Oracle Smart View For Office