CVE-2025-30701

CVSS 3.1 Score 7.3 of 10 (high)

Details

Published Apr 15, 2025

Updated: Apr 21, 2025

CWE ID 276

Summary

CVE-2025-30701 is a vulnerability affecting the RAS Security component of Oracle Database Server. Impacted versions include 19.3-19.26, 21.3-21.17, and 23.4-23.7. This easily exploitable issue permits a low-privileged attacker with a User Account and network access via Oracle Net to compromise the RAS Security. Successful attacks necessitate human interaction, potentially resulting in unauthorized creation, deletion, or modification of critical data or all RAS Security accessible data, and granting unauthorized access to critical data or complete access to all RAS Security accessible data. The Base Score, according to the Common Vulnerability Scoring System (CVSS) version 3.1, is 7.3 for Confidentiality and Integrity impacts. The CVSS Vector is (CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N).

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Vendors

Oracle

Advisories, Assessments, and Mitigations

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Threats to the 2025 NATO Summit

Artificial Eyes: Generative AI in China’s Military Intelligence

GrayAlpha Uses Diverse Infection Vectors to Deploy PowerNet Loader and NetSupport RAT

Know What Matters

For Customers

For Partners