VDB
CVE-2025-61763
CVE-2025-61763
PUBLISHED
CVSS 8.100000381469727 HIGH
Vulnerability in Oracle Essbase (component: Essbase Web Platform). The supported version that is affected is 21.7.3.0.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Essbase. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Oracle Essbase accessible data as well as unauthorized access to critical data or complete access to all Oracle Essbase accessible data. CVSS 3.1 Base Score 8.1 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N).
EPSS 0.07% · 20.3th percentile
Risk Scores
CVSS v3.1
8.100000381469727
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
EPSS Score
0.07%
20.3th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| oracle | essbase | 21.7.3.0.0 |
| Oracle Corporation | Oracle Essbase | 21.7.3.0.0 |
Timeline
- Oct 21, 2025 Coalition ESS Score
- Oct 21, 2025 CVE Published
- Oct 21, 2025 CVE Updated
- Oct 22, 2025 EPSS Score
- Oct 28, 2025 EPSS Score
- Nov 3, 2025 EPSS Score
- Nov 8, 2025 EPSS Score
- Nov 14, 2025 EPSS Score
- Nov 17, 2025 Coalition ESS Score
- Nov 20, 2025 EPSS Score
- Nov 26, 2025 EPSS Score
- Dec 2, 2025 EPSS Score
References
- Oracle Advisory vendor-advisory
- https://nvd.nist.gov/vuln/detail/CVE-2025-61763 advisory