oracle

10,484 tracked vulnerabilities.

CVE-2026-21994 CRITICAL
Oracle Edge Cloud Infrastructure Designer and Visualisation Toolkit 0.3.0 - RCE
Mar 17, 2026
CVSS 9.8
EPSS 0.00
CVE-2026-21991 MEDIUM
Oracle Linux 8 - Arbitrary File Creation
Mar 16, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-21990 HIGH
Oracle VM VirtualBox <7.2.4 - Privilege Escalation
Jan 20, 2026
CVSS 8.2
EPSS 0.00
CVE-2026-21989 HIGH
Oracle VM VirtualBox 7.1.14 and 7.2.4 - Authenticated Unauthorized Data Access and Partial Denial of Service
Jan 20, 2026
CVSS 8.1
EPSS 0.00
CVE-2026-21988 HIGH
Oracle VM VirtualBox <7.2.4 - Privilege Escalation
Jan 20, 2026
CVSS 8.2
EPSS 0.00
CVE-2026-21987 HIGH
Oracle VM VirtualBox <7.2.4 - Privilege Escalation
Jan 20, 2026
CVSS 8.2
EPSS 0.00
CVE-2026-21986 HIGH
Oracle VM VirtualBox 7.1.14 and 7.2.4 - Unauthenticated Denial of Service
Jan 20, 2026
CVSS 7.1
EPSS 0.00
CVE-2026-21985 MEDIUM
Oracle VM VirtualBox <7.2.4 - Privilege Escalation
Jan 20, 2026
CVSS 6.0
EPSS 0.00
CVE-2026-21984 HIGH
Oracle VM VirtualBox 7.1.14 and 7.2.4 - Authenticated Privilege Escalation in Core Component
Jan 20, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-21983 HIGH
Oracle VM VirtualBox 7.1.14 and 7.2.4 - Privilege Escalation
Jan 20, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-21982 HIGH
Oracle VM VirtualBox 7.1.14 and 7.2.4 - Unauthenticated Remote Code Execution
Jan 20, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-21981 MEDIUM
Oracle VM VirtualBox 7.1.14 and 7.2.4 - Authenticated Unauthorized Data Access and Partial Denial of Service
Jan 20, 2026
CVSS 4.6
EPSS 0.00
CVE-2026-21980 MEDIUM
Oracle Health Sciences Applications 7.0.1.0 - Unauthorized Update
Jan 20, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-21978 MEDIUM
Oracle FLEXCUBE Universal Banking <14.8.0.0 - Unauthorized Access
Jan 20, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-21976 HIGH
Oracle Analytics <8.2.0.0.0 - Unauthorized Create
Jan 20, 2026
CVSS 7.1
EPSS 0.00
CVE-2026-21975 MEDIUM
Oracle Java VM 19.3-19.29 and 21.3-21.20 - Authenticated Denial of Service via Oracle Net
Jan 20, 2026
CVSS 4.5
EPSS 0.00
CVE-2026-21974 MEDIUM
Oracle Life Sciences Central Designer 7.0.1.0 - Unauthenticated Exposure of Sensitive Information via HTTP
Jan 20, 2026
CVSS 5.3
EPSS 0.00
CVE-2026-21973 HIGH
Oracle FLEXCUBE <14.8.0.1.0 - Info Disclosure
Jan 20, 2026
CVSS 8.1
EPSS 0.00
CVE-2026-21972 MEDIUM
Oracle E-Business Suite - Confidentiality Disclosure
Jan 20, 2026
CVSS 5.3
EPSS 0.00
CVE-2026-21971 MEDIUM
Oracle PeopleSoft <9.2 - Privilege Escalation
Jan 20, 2026
CVSS 5.4
EPSS 0.00
CVE-2026-21970 MEDIUM
Oracle Health Sciences Applications 7.0.1.0 - Unauthorized Access
Jan 20, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-21969 CRITICAL
Oracle Agile Product Lifecycle Management for Process 6.2.4 - Unauthenticated Remote Code Execution via Supplier Portal
Jan 20, 2026
CVSS 9.8
EPSS 0.00
CVE-2026-21968 MEDIUM
MySQL Server 8.0.0-8.0.44, 8.4.0-8.4.7, 9.0.0-9.5.0 - Authenticated Denial of Service in Server Optimizer
Jan 20, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-21967 HIGH
Oracle Hospitality OPERA 5 - Unauthenticated Data Access and Partial Denial of Service via Opera Servlet
Jan 20, 2026
CVSS 8.6
EPSS 0.00
CVE-2026-21966 MEDIUM
Oracle Hospitality OPERA <5.6.27.4 - Info Disclosure
Jan 20, 2026
CVSS 6.1
EPSS 0.00