Oracle Corporation
1,042 tracked vulnerabilities.
CVE-2026-21997
HIGH
Oracle Life Sciences Empirica Signal 9.2.1-9.2.3 - Unauthorized Data Modification
Apr 21, 2026
CVSS 8.5
EPSS 0.00
CVE-2026-21992
CRITICAL
Oracle Identity Manager 12.2.1.4.0 - RCE
Mar 20, 2026
CVSS 9.8
EPSS 0.01
CVE-2026-21994
CRITICAL
Oracle Edge Cloud Infrastructure Designer and Visualisation Toolkit 0.3.0 - RCE
Mar 17, 2026
CVSS 9.8
EPSS 0.00
CVE-2026-21991
MEDIUM
Oracle Linux 8 - Arbitrary File Creation
Mar 16, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-21979
MEDIUM
Oracle Hyperion EPM Agent <25.04.07 - Privilege Escalation
Jan 20, 2026
CVSS 4.2
EPSS 0.00
CVE-2026-21977
LOW
Oracle Zero Data Loss Recovery Appliance <23.1.202509 - Info Disclo...
Jan 20, 2026
CVSS 3.1
EPSS 0.00
CVE-2026-21947
LOW
Oracle Java SE 8u471-b50 - Unauthenticated Cross-Site Scripting in JavaFX
Jan 20, 2026
CVSS 3.1
EPSS 0.00
CVE-2026-21945
HIGH
Oracle GraalVM and Java SE - Unauthenticated Denial of Service via Resource Consumption
Jan 20, 2026
CVSS 7.5
EPSS 0.01
CVE-2026-21933
MEDIUM
Oracle Java SE <25.0.1 - Networking
Jan 20, 2026
CVSS 6.1
EPSS 0.00
CVE-2026-21932
HIGH
Oracle Java SE and GraalVM - Unauthenticated Data Manipulation via Multiple Protocols
Jan 20, 2026
CVSS 7.4
EPSS 0.00
CVE-2026-21925
MEDIUM
Oracle GraalVM and Java SE - Unauthenticated Data Manipulation and Read Access via RMI
Jan 20, 2026
CVSS 4.8
EPSS 0.00
CVE-2025-61748
LOW
Oracle GraalVM and Java SE - Unauthenticated Improper Access Control
Oct 21, 2025
CVSS 3.7
EPSS 0.00
CVE-2025-53066
HIGH
Oracle GraalVM and Java SE - Unauthenticated Exposure of Sensitive Information via JAXP
Oct 21, 2025
CVSS 7.5
EPSS 0.01
CVE-2025-53057
MEDIUM
Oracle Java SE 8u461, 11.0.28, 17.0.16, 21.0.8, 25; GraalVM - Unauthenticated Data Access
Oct 21, 2025
CVSS 5.9
EPSS 0.00
CVE-2024-21182
HIGH
KEV
Oracle WebLogic Server <14.1.1.0.0 - Unauthorized Access
Jul 16, 2024
CVSS 7.5
EPSS 0.50
CVE-2023-22081
MEDIUM
Oracle GraalVM for JDK 17.0.8, 21 - Unauthenticated Partial Denial of Service via HTTPS
Oct 17, 2023
CVSS 5.3
EPSS 0.01
CVE-2023-22049
LOW
Oracle Java SE < - SQL Injection
Jul 18, 2023
CVSS 3.7
EPSS 0.01
CVE-2023-22045
LOW
Oracle GraalVM - Unauthenticated Unauthorized Data Read via Hotspot Component
Jul 18, 2023
CVSS 3.7
EPSS 0.01
CVE-2023-22041
MEDIUM
Oracle Java SE < - Memory Corruption
Jul 18, 2023
CVSS 5.1
EPSS 0.00
CVE-2023-22036
LOW
Oracle Java SE <20.0.1 - Unauthenticated RCE
Jul 18, 2023
CVSS 3.7
EPSS 0.01
CVE-2023-22006
LOW
Oracle Java SE <20.0.1 - Networking
Jul 18, 2023
CVSS 3.1
EPSS 0.01
CVE-2023-21968
LOW
Oracle Java SE <20 - Unauthenticated RCE
Apr 18, 2023
CVSS 3.7
EPSS 0.01
CVE-2023-21835
MEDIUM
Oracle GraalVM Enterprise Edition 20.3.8, 21.3.4, 22.3.0 - Unauthenticated Partial Denial of Service via DTLS
Jan 18, 2023
CVSS 5.3
EPSS 0.02
CVE-2023-21830
MEDIUM
Oracle Java SE 8u351, GraalVM EE 20.3.8/21.3.4 - Unauthenticated Data Manipulation via Serialization
Jan 18, 2023
CVSS 5.3
EPSS 0.01
CVE-2022-39399
LOW
Oracle GraalVM 20.3.7, 21.3.3, 22.2.0 - Unauthenticated Data Manipulation via HTTP
Oct 18, 2022
CVSS 3.7
EPSS 0.01
Products
MySQL Server 88
Java 60
PeopleSoft Enterprise PT PeopleTools 44
Oracle VM VirtualBox 42
Java SE JDK and JRE 31
Oracle WebCenter Content 29
WebLogic Server 26
Solaris Operating System 22
FLEXCUBE Private Banking 19
Oracle Java SE 17
WebCenter Sites 16
FLEXCUBE Universal Banking 15
Hospitality Suite8 15
JD Edwards EnterpriseOne Tools 15
Oracle Enterprise Manager Base Platform 15
Oracle GraalVM Enterprise Edition 15
Oracle Berkeley DB 14
Oracle GraalVM for JDK 14
BI Publisher (formerly XML Publisher) 13
PeopleSoft Enterprise PRTL Interaction Hub 12
Oracle WebCenter Sites 11
Hospitality Simphony 10
Oracle REST Data Services 10
Oracle WebCenter Enterprise Capture 10
Oracle WebCenter Portal 10
Agile PLM Framework 9
Automatic Service Request (ASR) 9
Hospitality OPERA 5 Property Services 8
Hospitality Reporting and Analytics 8
Identity Manager 8
Quick Filters