cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2025-21554,https://securityvulnerability.io/vulnerability/CVE-2025-21554,Unauthenticated Access Vulnerability in Oracle Communications Order and Service Management,"A security flaw exists in Oracle Communications Order and Service Management, allowing unauthenticated attackers with network access via HTTP to exploit this vulnerability. Affected versions include 7.4.0, 7.4.1, and 7.5.0. If successfully attacked, it can result in unauthorized read access to sensitive data, posing a risk to data confidentiality. Organizations using this application should apply the relevant security updates to mitigate risks associated with this vulnerability.",Oracle,Oracle Communications Order And Service Management,5.3,MEDIUM,0.0004299999854993075,false,,false,false,false,,false,false,false,,2025-01-21T20:53:17.695Z,0
CVE-2025-21544,https://securityvulnerability.io/vulnerability/CVE-2025-21544,Vulnerability in Oracle Communications Order and Service Management,"This vulnerability affects the Oracle Communications Order and Service Management product, enabling low-privileged attackers with network access via HTTP to potentially compromise the system. Successful exploitation requires human interaction from individuals other than the attacker, which may broaden the impact beyond just the affected product. Attackers could gain unauthorized update, insert, or delete access to sensitive data within the system, as well as unauthorized read access to certain accessible data.",Oracle,Oracle Communications Order And Service Management,5.4,MEDIUM,0.0004299999854993075,false,,false,false,false,,false,false,false,,2025-01-21T20:53:13.975Z,0
CVE-2025-21542,https://securityvulnerability.io/vulnerability/CVE-2025-21542,Security Flaw in Oracle Communications Order and Service Management by Oracle,"A vulnerability has been identified in the Oracle Communications Order and Service Management product, enabling an attacker with low privileges and network access via HTTP to execute unauthorized actions. Such actions include updating, inserting, or deleting data, as well as unauthorized reading of accessible data. Additionally, this flaw could allow attackers to partially disrupt service availability. Supported versions impacted by this security vulnerability are 7.4.0, 7.4.1, and 7.5.0. Organizations using these versions should take immediate action to mitigate risks associated with unauthorized data manipulation and service disruptions.",Oracle,Oracle Communications Order And Service Management,6.3,MEDIUM,0.0004299999854993075,false,,false,false,false,,false,false,false,,2025-01-21T20:53:13.104Z,0