oracle

10,202 tracked vulnerabilities.

CVE-2025-53043 HIGH
Oracle Product Hub 12.2.3-12.2.14 - Unauthorized Data Access and Modification via Item Catalog
Oct 21, 2025
CVSS 8.1
EPSS 0.00
CVE-2025-53042 MEDIUM
MySQL Server 8.0.0-8.0.43, 8.4.0-8.4.6, 9.0.0-9.4.0 - Authenticated Denial of Service in Optimizer
Oct 21, 2025
CVSS 4.9
EPSS 0.00
CVE-2025-53041 MEDIUM
Oracle iStore 12.2.5-12.2.14 - Unauthenticated Improper Access Control in Shopping Cart
Oct 21, 2025
CVSS 6.1
EPSS 0.00
CVE-2025-53040 MEDIUM
MySQL Server 8.0.0-8.0.43, 8.4.0-8.4.6, 9.0.0-9.4.0 - Authenticated Denial of Service in Optimizer
Oct 21, 2025
CVSS 4.9
EPSS 0.00
CVE-2025-53037 CRITICAL
Oracle Financial Services Analytical Applications Infrastructure 8.0.7.9/8.0.8.7/8.1.2.5 - RCE via HTTP
Oct 21, 2025
CVSS 9.8
EPSS 0.00
CVE-2025-53036 HIGH
Oracle Financial Services Analytical ... - Information Disclosure
Oct 21, 2025
CVSS 8.6
EPSS 0.00
CVE-2025-53035 MEDIUM
Oracle Financial Services Analytical Applications Infrastructure 8.0.7.9/8.0.8.7/8.1.2.5 - Unauthorized Data Access
Oct 21, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-53034 MEDIUM
Oracle Financial Services Analytical ... - Missing Authentication
Oct 21, 2025
CVSS 5.4
EPSS 0.00
CVE-2025-50075 MEDIUM
Oracle Financial Services Revenue Management <7.2.0.0.0 - Unauthori...
Oct 21, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-50074 MEDIUM
Oracle Financial Services Revenue Management - Unauthorized Access
Oct 21, 2025
CVSS 4.9
EPSS 0.00
CVE-2025-61884 HIGH KEVNUCLEI
Oracle Configurator 12.2.3-12.2.14 - Unauthenticated CRLF Injection via Runtime UI
Oct 12, 2025
CVSS 7.5
EPSS 0.48
CVE-2025-61882 CRITICAL KEVNUCLEI
Oracle Concurrent Processing 12.2.3-12.2.14 - Unauthenticated Takeover
Oct 05, 2025
CVSS 9.8
EPSS 0.88
CVE-2025-30755 MEDIUM
OpenGrok 1.14.1 - Reflected Cross-Site Scripting via Revision Parameter
Sep 19, 2025
CVSS 6.1
EPSS 0.00
CVE-2025-30761 MEDIUM
Oracle JDK and GraalVM Enterprise Edition - Unauthenticated Deserialization of Untrusted Data in Scripting Component
Jul 15, 2025
CVSS 5.9
EPSS 0.01
CVE-2025-53032 MEDIUM
MySQL Server 9.0.0-9.1.0 - Denial of Service in Optimizer
Jul 15, 2025
CVSS 4.9
EPSS 0.00
CVE-2025-53031 MEDIUM
Oracle Financial Services Analytical Applications Infrastructure <8...
Jul 15, 2025
CVSS 5.3
EPSS 0.00
CVE-2025-53030 MEDIUM
Oracle VM VirtualBox 7.1.10 - Improper Privilege Management
Jul 15, 2025
CVSS 6.0
EPSS 0.00
CVE-2025-53029 LOW
Oracle VM VirtualBox 7.1.10 - Unauthorized Data Access via Core Component
Jul 15, 2025
CVSS 2.3
EPSS 0.00
CVE-2025-53028 HIGH
Oracle VM VirtualBox 7.1.10 - Authenticated Remote Code Execution
Jul 15, 2025
CVSS 8.2
EPSS 0.00
CVE-2025-53027 HIGH
Oracle VM VirtualBox 7.1.10 - Privilege Escalation
Jul 15, 2025
CVSS 8.2
EPSS 0.00
CVE-2025-53026 MEDIUM
Oracle VM VirtualBox 7.1.10 - Improper Privilege Management
Jul 15, 2025
CVSS 6.0
EPSS 0.00
CVE-2025-53025 MEDIUM
Oracle VM VirtualBox 7.1.10 - Unauthorized Data Access via Core Component
Jul 15, 2025
CVSS 6.0
EPSS 0.00
CVE-2025-53024 HIGH
Oracle VM VirtualBox 7.1.10 - Privilege Escalation in Core Component
Jul 15, 2025
CVSS 8.2
EPSS 0.00
CVE-2025-53023 MEDIUM
Oracle MySQL Server 8.0.0-8.0.42 - Authenticated Denial of Service in Replication Component
Jul 15, 2025
CVSS 4.9
EPSS 0.00
CVE-2025-50108 MEDIUM
Oracle Hyperion <11.2.20.0.000 - Info Disclosure
Jul 15, 2025
CVSS 5.4
EPSS 0.00
Products
mysql 1,329 jre 798 jdk 786 solaris 553 database_server 513 vm_virtualbox 417 peoplesoft_enterprise_peopletools 352 e-business_suite 330 fusion_middleware 313 weblogic_server 307 mysql_server 277 linux 229 application_server 198 outside_in_technology 195 graalvm 187 peoplesoft_products 158 jd_edwards_enterpriseone_tools 150 communications_cloud_native_core_policy 125 retail_xstore_point_of_service 125 enterprise_manager_base_platform 120 zfs_storage_appliance_kit 117 enterprise_manager_ops_center 107 jrockit 107 http_server 105 openjdk 98 supply_chain_products_suite 97 flexcube_universal_banking 95 primavera_unifier 95 webcenter_portal 90 financial_services_analytical_applications_infrastructure 89
Quick Filters
Critical CVEs With Exploits In CISA KEV