CVE-2025-30744

Name of the Vulnerable Software and Affected Versions Oracle Mobile Field Service versions 12.2.3 through 12.2.13

Description An easily exploitable issue exists in the Oracle Mobile Field Service product of Oracle E-Business Suite (component: Multiplatform Sync Errors). A low-privileged attacker with network access via HTTP can compromise the application. Successful attacks can result in unauthorized creation, deletion, or modification of critical data, or complete access to all Oracle Mobile Field Service accessible data.

Recommendations Versions prior to 12.2.3 are not affected. Versions 12.2.3 through 12.2.13 should be updated to a newer, fixed version when available.