Oracle Corporation

742 tracked vulnerabilities.

CVE-2026-22005 MEDIUM
MySQL Server 8.0.0-8.0.45, 8.4.0-8.4.8, 9.0.0-9.6.0 - Denial of Service in Server Optimizer
Apr 21, 2026
CVSS 4.9
EPSS 0.00
CVE-2026-22004 MEDIUM
MySQL Server 8.0.0-8.0.45, 8.4.0-8.4.8, 9.0.0-9.6.0 - Authenticated Denial of Service in InnoDB
Apr 21, 2026
CVSS 4.9
EPSS 0.00
CVE-2026-22003 MEDIUM
Oracle Java SE 8u481, 8u481-b50 and GraalVM Enterprise Edition 21.3.17 - Uncontrolled Resource Consumption in Hotspot
Apr 21, 2026
CVSS 6.0
EPSS 0.00
CVE-2026-22002 MEDIUM
MySQL Server 8.0.0-8.0.45, 8.4.0-8.4.8, 9.0.0-9.6.0 - Denial of Service in Optimizer
Apr 21, 2026
CVSS 4.9
EPSS 0.00
CVE-2026-22001 LOW
MySQL Server 8.0.0-8.0.45 - Info Disclosure
Apr 21, 2026
CVSS 2.7
EPSS 0.00
CVE-2026-21999 MEDIUM
Oracle Database Server 23.4.0-23.26.1 - Info Disclosure
Apr 21, 2026
CVSS 5.3
EPSS 0.00
CVE-2026-21998 MEDIUM
MySQL Server 8.0.0-8.0.45, 8.4.0-8.4.8, 9.0.0-9.6.0 - Authenticated Denial of Service in Optimizer
Apr 21, 2026
CVSS 4.9
EPSS 0.00
CVE-2026-21997 HIGH
Oracle Life Sciences Empirica Signal 9.2.1-9.2.3 - Unauthorized Data Modification
Apr 21, 2026
CVSS 8.5
EPSS 0.00
CVE-2026-21992 CRITICAL
Oracle Identity Manager 12.2.1.4.0 - RCE
Mar 20, 2026
CVSS 9.8
EPSS 0.00
CVE-2026-21994 CRITICAL
Oracle Edge Cloud Infrastructure Designer and Visualisation Toolkit 0.3.0 - RCE
Mar 17, 2026
CVSS 9.8
EPSS 0.00
CVE-2026-21991 MEDIUM
Oracle Linux 8 - Arbitrary File Creation
Mar 16, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-21979 MEDIUM
Oracle Hyperion EPM Agent <25.04.07 - Privilege Escalation
Jan 20, 2026
CVSS 4.2
EPSS 0.00
CVE-2026-21977 LOW
Oracle Zero Data Loss Recovery Appliance <23.1.202509 - Info Disclo...
Jan 20, 2026
CVSS 3.1
EPSS 0.00
CVE-2026-21947 LOW
Oracle Java SE 8u471-b50 - Unauthenticated Cross-Site Scripting in JavaFX
Jan 20, 2026
CVSS 3.1
EPSS 0.00
CVE-2026-21945 HIGH
Oracle GraalVM and Java SE - Unauthenticated Denial of Service via Resource Consumption
Jan 20, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-21933 MEDIUM
Oracle Java SE <25.0.1 - Networking
Jan 20, 2026
CVSS 6.1
EPSS 0.00
CVE-2026-21932 HIGH
Oracle Java SE and GraalVM - Unauthenticated Data Manipulation via Multiple Protocols
Jan 20, 2026
CVSS 7.4
EPSS 0.00
CVE-2026-21925 MEDIUM
Oracle GraalVM and Java SE - Unauthenticated Data Manipulation and Read Access via RMI
Jan 20, 2026
CVSS 4.8
EPSS 0.00
CVE-2025-61748 LOW
Oracle GraalVM and Java SE - Unauthenticated Improper Access Control
Oct 21, 2025
CVSS 3.7
EPSS 0.00
CVE-2025-53066 HIGH
Oracle GraalVM and Java SE - Unauthenticated Exposure of Sensitive Information via JAXP
Oct 21, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-53057 MEDIUM
Oracle Java SE 8u461, 11.0.28, 17.0.16, 21.0.8, 25; GraalVM - Unauthenticated Data Access
Oct 21, 2025
CVSS 5.9
EPSS 0.00
CVE-2017-10278 HIGH
Oracle Tuxedo 11.1.1 12.1.1 12.1.3 12.2.2 - Unauthenticated Data Access and Partial Denial of Service via Jolt
Nov 14, 2017
CVSS 7.0
EPSS 0.01
CVE-2017-10272 CRITICAL
Oracle Tuxedo 11.1.1 12.1.1 12.1.3 12.2.2 - Unauthorized Data Access and Partial Denial of Service via Jolt
Nov 14, 2017
CVSS 9.9
EPSS 0.01
CVE-2017-10269 CRITICAL
Oracle Tuxedo 11.1.1 12.1.1 12.1.3 12.2.2 - Unauthenticated Data Manipulation and Partial Denial of Service via Jolt
Nov 14, 2017
CVSS 10.0
EPSS 0.02
CVE-2017-10267 HIGH
Oracle Tuxedo 11.1.1 12.1.1 12.1.3 12.2.2 - Unauthenticated Exposure of Sensitive Information via Jolt
Nov 14, 2017
CVSS 7.5
EPSS 0.01
Products
MySQL Server 87 Java 60 PeopleSoft Enterprise PT PeopleTools 36 Oracle VM VirtualBox 32 Solaris Operating System 22 FLEXCUBE Private Banking 19 Oracle Java SE 17 WebCenter Sites 16 FLEXCUBE Universal Banking 15 Hospitality Suite8 15 Oracle GraalVM Enterprise Edition 15 Oracle Berkeley DB 14 Oracle GraalVM for JDK 14 BI Publisher (formerly XML Publisher) 13 PeopleSoft Enterprise PRTL Interaction Hub 12 WebLogic Server 12 Hospitality Simphony 10 Agile PLM Framework 9 Automatic Service Request (ASR) 9 Hospitality OPERA 5 Property Services 8 Hospitality Reporting and Analytics 8 FLEXCUBE Enterprise Limits and Collateral Management 7 Hospitality Guest Access 7 Marketing 7 Oracle Database 7 Oracle Identity Manager Connector 7 Primavera P6 Enterprise Project Portfolio Management 7 Sun ZFS Storage Appliance Kit (AK) Software 7 Application Object Library 6 Hospitality Hotel Mobile 6
Quick Filters
Critical CVEs With Exploits In CISA KEV