CVE-2025-30756

Name of the Vulnerable Software and Affected Versions Oracle REST Data Services version 24.2.0

Description An easily exploitable issue exists in Oracle REST Data Services that allows an unauthenticated attacker with network access via HTTP to compromise the service. Successful attacks require human interaction from a person other than the attacker. Exploitation may significantly impact additional products. Successful attacks can result in unauthorized update, insert, or delete access to some data, as well as unauthorized read access to a subset of data accessible through Oracle REST Data Services.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.