You're almost there! Please answer a few more questions for access to the Applications content. Complete registration
Interested in joining? Complete your registration by providing Areas of Interest here. Register

Successor Visibility in ORC

in Recruiting, Opportunity Marketplace 1 comment

We have identified a potential data breach issue in Oracle Recruiting Cloud related to the successor visibility of requisitions. Below is a summary of the situation:

A user who previously held a recruiter role was assigned as an additional recruiter on some requisitions. In ORC, there is a visibility inheritance mechanism, meaning that their manager can see the requisitions in which they are involved.

Although this user no longer holds the recruiter role, they remained assigned to requisitions, which led to their new manager gaining visibility over those requisitions. This could result in unauthorized access to sensitive recruitment data by a manager not directly involved in the requisition.

Tagged:

Howdy, Stranger!

Log In

To view full details, sign in.

Register

Don't have an account? Click here to get started!