CVE-2025-30760

Name of the Vulnerable Software and Affected Versions Oracle JD Edwards versions 9.2.0.0 through 9.2.9.3

Description This issue affects the Web Runtime SEC component of Oracle JD Edwards EnterpriseOne Tools. A low-privileged attacker with network access via HTTP can compromise the system, potentially leading to unauthorized data manipulation and access. Specifically, attackers may be able to update, insert, or delete data, as well as read sensitive information.

Recommendations Oracle JD Edwards version 9.2.0.0: At the moment, there is no information about a newer version that contains a fix for this vulnerability. Oracle JD Edwards version 9.2.1.0: At the moment, there is no information about a newer version that contains a fix for this vulnerability. Oracle JD Edwards version 9.2.2.0: At the moment, there is no information about a newer version that contains a fix for this vulnerability. Oracle JD Edwards version 9.2.3.0: At the moment, there is no information about a newer version that contains a fix for this vulnerability. Oracle JD Edwards version 9.2.4.0: At the moment, there is no information about a newer version that contains a fix for this vulnerability. Oracle JD Edwards version 9.2.5.0: At the moment, there is no information about a newer version that contains a fix for this vulnerability. Oracle JD Edwards version 9.2.6.0: At the moment, there is no information about a newer version that contains a fix for this vulnerability. Oracle JD Edwards version 9.2.7.0: At the moment, there is no information about a newer version that contains a fix for this vulnerability. Oracle JD Edwards version 9.2.8.0: At the moment, there is no information about a newer version that contains a fix for this vulnerability. Oracle JD Edwards version 9.2.9.0: At the moment, there is no information about a newer version that contains a fix for this vulnerability. Oracle JD Edwards version 9.2.9.1: At the moment, there is no information about a newer version that contains a fix for this vulnerability. Oracle JD Edwards version 9.2.9.2: At the moment, there is no information about a newer version that contains a fix for this vulnerability. Oracle JD Edwards version 9.2.9.3: At the moment, there is no information about a newer version that contains a fix for this vulnerability.