A vulnerability, which was classified as critical, has been found in Oracle Communications Order and Service Management 7.4.0/7.4.1/7.5.0. This issue affects some unknown processing of the component Security. The manipulation leads to improper authorization.
The identification of this vulnerability is CVE-2025-21542. The attack may be initiated remotely. There is no exploit available.
It is recommended to upgrade the affected component.