CWE-284

Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

4,788 vulnerabilities with CWE-284
CVE-2026-35229 HIGH
Oracle Database Server 19.3-19.30 - Info Disclosure
CVSS 7.5
CVE-2026-34325 MEDIUM
Oracle Corporation Oracle Financial Services Analytical Applications Infrastructure < 8.0.7.9 - Denial of Service
CVSS 6.8
CVE-2026-34324 MEDIUM
Oracle Life Sciences InForm 7.0.1.0 - SQL Injection
CVSS 6.5
CVE-2026-34323 MEDIUM
Oracle Corporation Oracle Life Sciences InForm < 7.0.1.0 - Denial of Service
CVSS 6.3
CVE-2026-34312 LOW
Oracle Database Server 19.3-19.30 - Info Disclosure
CVSS 2.4
CVE-2026-34310 HIGH
Oracle Financial Services Analytical Applications Infrastructure 8.0.7.9 - Info Disclosure
CVSS 7.5
CVE-2026-34309 HIGH
PeopleSoft Enterprise PeopleTools 8.61-8.62 - Privilege Escalation
CVSS 8.1
CVE-2026-34307 MEDIUM
Oracle PeopleSoft Enterprise PeopleTools 8.61-8.62 - RCE
CVSS 5.4
CVE-2026-34306 MEDIUM
PeopleSoft Enterprise FIN Project Costing 9.2 - Info Disclosure
CVSS 6.5
CVE-2026-34302 MEDIUM
Oracle Corporation Oracle Workflow < 12.2.15 - Denial of Service
CVSS 5.5
CVE-2026-34301 MEDIUM
PeopleSoft Enterprise FIN Maintenance Management 9.2 - Info Disclosure
CVSS 6.5
CVE-2026-34299 MEDIUM
PeopleSoft Enterprise FIN Maintenance Management 9.2 - Info Disclosure
CVSS 6.5
CVE-2026-34298 MEDIUM
Oracle Corporation Oracle Applications Framework < 12.2.15 - Denial of Service
CVSS 4.7
CVE-2026-34295 MEDIUM
PeopleSoft Enterprise SCM Purchasing 9.2 - Info Disclosure
CVSS 6.5
CVE-2026-34294 MEDIUM
Oracle Identity Manager Connector 12.2.1.4.0 - Privilege Escalation
CVSS 5.9
CVE-2026-34292 HIGH
Oracle WebLogic Server 12.2.1.4.0 - RCE
CVSS 7.2
CVE-2026-34291 HIGH
Oracle HTTP Server 12.2.1.4.0 - Privilege Escalation
CVSS 8.7
CVE-2026-34287 CRITICAL
Oracle Identity Manager Connector 12.2.1.4.0 - Unauthenticated Data Manipulation
CVSS 9.1
CVE-2026-34284 MEDIUM
Oracle Business Process Management Suite 12.2.1.4.0 - RCE
CVSS 6.1
CVE-2026-34283 MEDIUM
Oracle Identity Manager 12.2.1.4.0 - RCE
CVSS 6.1
CVE-2026-34277 MEDIUM
Oracle Corporation PeopleSoft Enterprise PeopleTools < 8.62 - Denial of Service
CVSS 6.6
CVE-2026-34274 MEDIUM
Oracle Configurator 12.2.3-12.2.15 - RCE
CVSS 6.1
CVE-2026-34269 MEDIUM
Oracle PeopleSoft Enterprise PeopleTools 8.61-8.62 - RCE
CVSS 6.1
CVE-2026-22019 MEDIUM
Oracle PeopleSoft HCM Shared Components 9.2 - RCE
CVSS 5.4
CVE-2026-22014 LOW
Oracle User Management 12.2.7-12.2.15 - Privilege Escalation
CVSS 3.8
Details
Vulnerabilities 4,788
Links
MITRE CWE Entry Search this CWE With Exploits