Vulnerability in Oracle Financial Services Analytical Applications Infrastructure
CVE-2025-53035

6.5MEDIUM

Key Information:

Vendor: Oracle
Status: Oracle Financial Services Analytical Applications Infrastructure
Vendor: CVE Published:; 21 October 2025

What is CVE-2025-53035?

A security vulnerability has been identified in the Oracle Financial Services Analytical Applications Infrastructure, which affects specific supported versions. This vulnerability can be easily exploited by low-privileged attackers with HTTP network access, enabling them to compromise sensitive data within the infrastructure. Successful exploitation may lead to unauthorized access to critical information, risking the integrity and confidentiality of data across the affected systems, including potential exposure of all accessible data.

Affected Version(s)

Oracle Financial Services Analytical Applications Infrastructure 8.0.7.9

Oracle Financial Services Analytical Applications Infrastructure 8.0.8.7

Oracle Financial Services Analytical Applications Infrastructure 8.1.2.5

References

https://www.oracle.com/security-alerts/cpuoct2025.html

vendor-advisory

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 21, 2025
Vulnerability Reserved
Jun 24, 2025

JSON