21Oca
CVE-2025-21508 | Oracle JD Edwards EnterpriseOne Tools up to 9.2.8.2 Web Runtime SEC improper authorization
A vulnerability classified as critical has been found in Oracle JD Edwards EnterpriseOne Tools up to 9.2.8.2. This affects an unknown part of the component Web Runtime SEC. The manipulation leads to improper authorization. This vulnerability is uniquely identified as CVE-2025-21508. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.