Oracle Corporation

1,042 tracked vulnerabilities.

CVE-2026-21997 HIGH
Oracle Life Sciences Empirica Signal 9.2.1-9.2.3 - Unauthorized Data Modification
Apr 21, 2026
CVSS 8.5
EPSS 0.00
CVE-2026-21992 CRITICAL
Oracle Identity Manager 12.2.1.4.0 - RCE
Mar 20, 2026
CVSS 9.8
EPSS 0.01
CVE-2026-21994 CRITICAL
Oracle Edge Cloud Infrastructure Designer and Visualisation Toolkit 0.3.0 - RCE
Mar 17, 2026
CVSS 9.8
EPSS 0.00
CVE-2026-21991 MEDIUM
Oracle Linux 8 - Arbitrary File Creation
Mar 16, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-21979 MEDIUM
Oracle Hyperion EPM Agent <25.04.07 - Privilege Escalation
Jan 20, 2026
CVSS 4.2
EPSS 0.00
CVE-2026-21977 LOW
Oracle Zero Data Loss Recovery Appliance <23.1.202509 - Info Disclo...
Jan 20, 2026
CVSS 3.1
EPSS 0.00
CVE-2026-21947 LOW
Oracle Java SE 8u471-b50 - Unauthenticated Cross-Site Scripting in JavaFX
Jan 20, 2026
CVSS 3.1
EPSS 0.00
CVE-2026-21945 HIGH
Oracle GraalVM and Java SE - Unauthenticated Denial of Service via Resource Consumption
Jan 20, 2026
CVSS 7.5
EPSS 0.01
CVE-2026-21933 MEDIUM
Oracle Java SE <25.0.1 - Networking
Jan 20, 2026
CVSS 6.1
EPSS 0.00
CVE-2026-21932 HIGH
Oracle Java SE and GraalVM - Unauthenticated Data Manipulation via Multiple Protocols
Jan 20, 2026
CVSS 7.4
EPSS 0.00
CVE-2026-21925 MEDIUM
Oracle GraalVM and Java SE - Unauthenticated Data Manipulation and Read Access via RMI
Jan 20, 2026
CVSS 4.8
EPSS 0.00
CVE-2025-61748 LOW
Oracle GraalVM and Java SE - Unauthenticated Improper Access Control
Oct 21, 2025
CVSS 3.7
EPSS 0.00
CVE-2025-53066 HIGH
Oracle GraalVM and Java SE - Unauthenticated Exposure of Sensitive Information via JAXP
Oct 21, 2025
CVSS 7.5
EPSS 0.01
CVE-2025-53057 MEDIUM
Oracle Java SE 8u461, 11.0.28, 17.0.16, 21.0.8, 25; GraalVM - Unauthenticated Data Access
Oct 21, 2025
CVSS 5.9
EPSS 0.00
CVE-2024-21182 HIGH KEV
Oracle WebLogic Server <14.1.1.0.0 - Unauthorized Access
Jul 16, 2024
CVSS 7.5
EPSS 0.50
CVE-2023-22081 MEDIUM
Oracle GraalVM for JDK 17.0.8, 21 - Unauthenticated Partial Denial of Service via HTTPS
Oct 17, 2023
CVSS 5.3
EPSS 0.01
CVE-2023-22049 LOW
Oracle Java SE < - SQL Injection
Jul 18, 2023
CVSS 3.7
EPSS 0.01
CVE-2023-22045 LOW
Oracle GraalVM - Unauthenticated Unauthorized Data Read via Hotspot Component
Jul 18, 2023
CVSS 3.7
EPSS 0.01
CVE-2023-22041 MEDIUM
Oracle Java SE < - Memory Corruption
Jul 18, 2023
CVSS 5.1
EPSS 0.00
CVE-2023-22036 LOW
Oracle Java SE <20.0.1 - Unauthenticated RCE
Jul 18, 2023
CVSS 3.7
EPSS 0.01
CVE-2023-22006 LOW
Oracle Java SE <20.0.1 - Networking
Jul 18, 2023
CVSS 3.1
EPSS 0.01
CVE-2023-21968 LOW
Oracle Java SE <20 - Unauthenticated RCE
Apr 18, 2023
CVSS 3.7
EPSS 0.01
CVE-2023-21835 MEDIUM
Oracle GraalVM Enterprise Edition 20.3.8, 21.3.4, 22.3.0 - Unauthenticated Partial Denial of Service via DTLS
Jan 18, 2023
CVSS 5.3
EPSS 0.02
CVE-2023-21830 MEDIUM
Oracle Java SE 8u351, GraalVM EE 20.3.8/21.3.4 - Unauthenticated Data Manipulation via Serialization
Jan 18, 2023
CVSS 5.3
EPSS 0.01
CVE-2022-39399 LOW
Oracle GraalVM 20.3.7, 21.3.3, 22.2.0 - Unauthenticated Data Manipulation via HTTP
Oct 18, 2022
CVSS 3.7
EPSS 0.01