- Description
- Vulnerability in the Oracle Scripting product of Oracle E-Business Suite (component: iSurvey Module). Supported versions that are affected are 12.2.3-12.2.14. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Scripting. Successful attacks of this vulnerability can result in takeover of Oracle Scripting. CVSS 3.1 Base Score 9.8 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H).
- Source
- secalert_us@oracle.com
- NVD status
- Analyzed
CVSS 3.1
- Type
- Secondary
- Base score
- 9.8
- Impact score
- 5.9
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
- Severity
- CRITICAL
- 134c704f-9b21-4f2e-91b3-4a467353bcc0
- CWE-306
- Hype score
- Not currently trending
🚨 CVE-2025-30727 ⚠️🔴 CRITICAL (9.8) 🏢 Oracle Corporation - Oracle Scripting 🏗️ 12.2.3 🔗 https://t.co/HmKVfHYw44 #CyberCron #VulnAlert #InfoSec https://t.co/1eHCMqTO8G
@cybercronai
16 Apr 2025
41 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
📊 #VulnReport Security Summary - April 16, 2025. Today's vulnerability report shows over 200 new #CVE's across various platforms 🧵👇 ⚠️ Oracle Critical Patch Update released today with 50+ security fixes. Most critical: CVE-2025-30727 (CRITICAL 9.8) in Oracle Scripting. https:
@gothburz
16 Apr 2025
187 Impressions
0 Retweets
52 Likes
0 Bookmarks
0 Replies
0 Quotes
�� CVE-2025-30727 - Oracle E-Business Suite - HIGH 🚨 🗓️ Date published 2025-04-15 21:16:02 UTC #OracleE-BusinessSuite #CyberSecurity #InfoSec #Vulnerability #TechNews https://t.co/3g73Yt92fH
@vulns_space
15 Apr 2025
54 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
A severe vulnerability was disclosed for Oracle Scripting (CVE-2025-30727) https://t.co/mYDkdWJ8ko
@vuldb
15 Apr 2025
15 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[CVE-2025-30727: CRITICAL] Critical vulnerability in Oracle Scripting product of E-Business Suite's iSurvey Module (versions 12.2.3-12.2.14) exposes systems to potential takeover by attackers via HTTP access. #cve,CVE-2025-30727,#cybersecurity https://t.co/fRRTrVIonq https://t.co
@CveFindCom
15 Apr 2025
70 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-30727 Vulnerability in the Oracle Scripting product of Oracle E-Business Suite (component: iSurvey Module). Supported versions that are affected are 12.2.3-12.2.14. Easily… https://t.co/oT9PL863kJ
@CVEnew
15 Apr 2025
124 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:oracle:e-business_suite:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "63FD7F81-3E53-4FB7-8862-0FF52001C7B6",
"versionEndIncluding": "12.2.14",
"versionStartIncluding": "12.2.3"
}
],
"operator": "OR"
}
]
}
]