21Oca
CVE-2025-21538 | Oracle JD Edwards EnterpriseOne Tools up to 9.2.9.1 Web Runtime SEC improper authentication
A vulnerability was found in Oracle JD Edwards EnterpriseOne Tools up to 9.2.9.1. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component Web Runtime SEC. The manipulation leads to improper authentication. This vulnerability is known as CVE-2025-21538. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.