oracle

10,484 tracked vulnerabilities.

CVE-2025-50062 HIGH
Oracle PeopleSoft Enterprise HCM Global Payroll Core 9.2.51-9.2.52 - Privilege Escalation
Jul 15, 2025
CVSS 8.1
EPSS 0.00
CVE-2025-50061 MEDIUM
Oracle Primavera P6 EPM 20.12.0-24.12.4 - Privilege Escalation
Jul 15, 2025
CVSS 5.4
EPSS 0.00
CVE-2025-50060 HIGH
Oracle BI Publisher 7.6.0.0.0, 8.2.0.0.0, 12.2.1.4.0 - Authenticated Improper Access Control in Web Server
Jul 15, 2025
CVSS 8.1
EPSS 0.00
CVE-2025-50059 HIGH
Oracle Jdk - Improper Access Control
Jul 15, 2025
CVSS 8.6
EPSS 0.01
CVE-2025-30762 HIGH
Oracle WebLogic Server 12.2.1.4.0, 14.1.1.0.0, 14.1.2.0.0 - Unauthenticated Unauthorized Data Access via T3, IIOP
Jul 15, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-30760 MEDIUM
Oracle JD Edwards EnterpriseOne Tools 9.2.0.0-9.2.9.3 - Authenticated Improper Access Control in Web Runtime SEC
Jul 15, 2025
CVSS 5.4
EPSS 0.00
CVE-2025-30759 MEDIUM
Oracle Business Intelligence Enterprise Edition 7.6.0.0.0, 8.2.0.0.0, 12.2.1.4.0 - Unauthenticated Access Control Bypass
Jul 15, 2025
CVSS 6.1
EPSS 0.00
CVE-2025-30758 MEDIUM
Oracle Siebel CRM Deployment 25.0-25.5 - Unauthenticated Exposure of Sensitive Information via User Interface
Jul 15, 2025
CVSS 5.3
EPSS 0.00
CVE-2025-30756 MEDIUM
Oracle REST Data Services 24.2.0 - Unauthenticated Cross-Site Request Forgery
Jul 15, 2025
CVSS 6.1
EPSS 0.00
CVE-2025-30754 MEDIUM
Oracle GraalVM for JDK 17.0.15, 21.0.7, 24.0.1 - Unauthenticated Improper Access Control via TLS
Jul 15, 2025
CVSS 4.8
EPSS 0.00
CVE-2025-30753 MEDIUM
Oracle WebLogic Server 12.2.1.4.0, 14.1.1.0.0, 14.1.2.0.0 - Denial of Service via HTTP
Jul 15, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-30752 LOW
Oracle GraalVM for JDK 24.0.1 - Unauthenticated Partial Denial of Service in Compiler
Jul 15, 2025
CVSS 3.7
EPSS 0.01
CVE-2025-30751 HIGH
Oracle Database Server 19.27 and 23.4-23.8 - Authenticated Database Takeover via Oracle Net
Jul 15, 2025
CVSS 8.8
EPSS 0.00
CVE-2025-30750 LOW
Oracle Database Server 19.3-19.27, 21.3-21.18, 23.4-23.8 - Authenticated Unauthorized Data Manipulation in Unified Audit
Jul 15, 2025
CVSS 2.4
EPSS 0.00
CVE-2025-30749 HIGH
Oracle Java SE <24.0.1 - Info Disclosure
Jul 15, 2025
CVSS 8.1
EPSS 0.01
CVE-2025-30748 MEDIUM
Oracle PeopleSoft Enterprise PeopleTools 8.60-8.62 - Unauthenticated Incorrect Authorization via PIA Core Technology
Jul 15, 2025
CVSS 6.1
EPSS 0.00
CVE-2025-30747 MEDIUM
Oracle PeopleSoft Enterprise PeopleTools 8.60-8.62 - Unauthenticated Unauthorized Data Access via PIA Core Technology
Jul 15, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-30746 MEDIUM
Oracle iStore 12.2.3-12.2.14 - Unauthenticated Cross-Site Request Forgery in Shopping Cart
Jul 15, 2025
CVSS 6.1
EPSS 0.00
CVE-2025-30745 MEDIUM
Oracle MES for Process Manufacturing 12.2.12-12.2.13 - Unauthenticated Cross-Site Request Forgery in Device Integration
Jul 15, 2025
CVSS 6.1
EPSS 0.00
CVE-2025-30744 HIGH
Oracle Mobile Field Service 12.2.3-12.2.13 - Incorrect Authorization via Multiplatform Sync Errors
Jul 15, 2025
CVSS 8.1
EPSS 0.00
CVE-2025-30743 HIGH
Oracle Lease and Finance Management 12.2.13 - Unauthorized Data Access and Modification via Internal Operations
Jul 15, 2025
CVSS 8.1
EPSS 0.00
CVE-2025-30739 MEDIUM
Oracle CRM Technical Foundation 12.2.11-12.2.13 - Authenticated Incorrect Authorization in Preferences
Jul 15, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-4598 MEDIUM
systemd-coredump - Privilege Escalation
May 30, 2025
CVSS 4.7
EPSS 0.01
CVE-2025-21572 MEDIUM
OpenGrok 1.13.25 - Reflected Cross-Site Scripting via History View Path Segments
May 02, 2025
CVSS 6.1
EPSS 0.00
CVE-2025-30740 MEDIUM
Oracle JD Edwards EnterpriseOne Tools 9.2.0.0-9.2.9.2 - Unauthorized Data Access via Web Runtime SEC
Apr 15, 2025
CVSS 6.5
EPSS 0.00