oracle

10,202 tracked vulnerabilities.

CVE-2025-62289 MEDIUM
Oracle ZFS Storage Appliance Kit 8.8 - Denial of Service via HTTP
Oct 21, 2025
CVSS 4.9
EPSS 0.00
CVE-2025-62288 MEDIUM
Oracle Health Sciences Data Management Workbench <3.4.1.0.10 - Unau...
Oct 21, 2025
CVSS 4.9
EPSS 0.00
CVE-2025-62287 MEDIUM
Oracle Life Sciences InForm 7.0.1.0 - Unauthenticated Data Manipulation and Read Access via Web Server
Oct 21, 2025
CVSS 6.1
EPSS 0.00
CVE-2025-61885 MEDIUM
Oracle Life Sciences InForm 7.0.1.0 - Unauthorized Data Access via Web Server
Oct 21, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-61881 MEDIUM
Oracle Java VM 19.3-19.28, 21.3-21.19, 23.4-23.9 - Unauthenticated Improper Access Control via Oracle Net
Oct 21, 2025
CVSS 5.9
EPSS 0.00
CVE-2025-61764 MEDIUM
Oracle WebLogic Server 12.2.1.4.0, 14.1.1.0.0, 14.1.2.0.0 - Unauthenticated Exposure of Sensitive Information via HTTP
Oct 21, 2025
CVSS 5.3
EPSS 0.00
CVE-2025-61763 HIGH
Oracle Essbase 21.7.3.0.0 - Unauthorized Data Access and Modification via HTTP
Oct 21, 2025
CVSS 8.1
EPSS 0.00
CVE-2025-61762 MEDIUM
Oracle PeopleSoft Enterprise FIN Payables 9.2 - Improper Access Control
Oct 21, 2025
CVSS 6.3
EPSS 0.00
CVE-2025-61761 MEDIUM
Oracle PeopleSoft Enterprise FIN Maintenance Management 9.2 - Improper Access Control in Work Order Management
Oct 21, 2025
CVSS 5.4
EPSS 0.00
CVE-2025-61760 HIGH
Oracle VM VirtualBox 7.1.12 and 7.2.2 - Authenticated Remote Code Execution
Oct 21, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-61759 MEDIUM
Oracle VM VirtualBox 7.1.12 and 7.2.2 - Unauthorized Data Access via Privilege Escalation
Oct 21, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-61758 MEDIUM
Oracle PeopleSoft Enterprise FIN IT Asset Management 9.2 - Unauthorized Data Access via HTTP
Oct 21, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-61757 CRITICAL KEVNUCLEI
Oracle Identity Manager 12.2.1.4.0 and 14.1.2.1.0 - Unauthenticated Remote Code Execution via REST WebServices
Oct 21, 2025
CVSS 9.8
EPSS 0.88
CVE-2025-61755 LOW
Oracle GraalVM for JDK 17.0.16 and 21.0.8 - Unauthenticated Missing Authorization
Oct 21, 2025
CVSS 3.7
EPSS 0.00
CVE-2025-61754 MEDIUM
Oracle Analytics Web Service API <8.2.0.0.0 - Unauthorized Access
Oct 21, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-61753 MEDIUM
Oracle Scripting 12.2.3-12.2.14 - Unauthenticated Open Redirect via HTTP
Oct 21, 2025
CVSS 6.1
EPSS 0.00
CVE-2025-61752 HIGH
Oracle WebLogic Server 14.1.1.0.0 and 14.1.2.0.0 - Unauthenticated Denial of Service via HTTP/2
Oct 21, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-61751 HIGH
Oracle Financial Services Analytical Applications Infrastructure 8.0.7.9, 8.0.8.7, 8.1.2.5 - Missing Authorization
Oct 21, 2025
CVSS 8.1
EPSS 0.00
CVE-2025-61750 MEDIUM
Oracle PeopleSoft Enterprise PeopleTools 8.61 and 8.62 - Unauthorized Data Access via Query Component
Oct 21, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-61749 LOW
Oracle Database Server 23.4-23.9 - Authenticated Unauthorized Data Manipulation in Unified Audit
Oct 21, 2025
CVSS 2.7
EPSS 0.00
CVE-2025-61748 LOW
Oracle GraalVM and Java SE - Unauthenticated Improper Access Control
Oct 21, 2025
CVSS 3.7
EPSS 0.00
CVE-2025-53072 CRITICAL
Oracle Marketing 12.2.3-12.2.14 - Unauthenticated Remote Code Execution via HTTP
Oct 21, 2025
CVSS 9.8
EPSS 0.00
CVE-2025-53071 MEDIUM
Oracle Applications Framework 12.2.3-12.2.14 - Authenticated Improper Access Control in Upload Attachments
Oct 21, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-53070 MEDIUM
Oracle Solaris 11 - Denial of Service in Filesystem
Oct 21, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-53069 MEDIUM
MySQL Server 8.0.0-8.0.43, 8.4.0-8.4.6, 9.0.0-9.4.0 - Authenticated Denial of Service in Components Services
Oct 21, 2025
CVSS 4.9
EPSS 0.00
Products
mysql 1,329 jre 798 jdk 786 solaris 553 database_server 513 vm_virtualbox 417 peoplesoft_enterprise_peopletools 352 e-business_suite 330 fusion_middleware 313 weblogic_server 307 mysql_server 277 linux 229 application_server 198 outside_in_technology 195 graalvm 187 peoplesoft_products 158 jd_edwards_enterpriseone_tools 150 communications_cloud_native_core_policy 125 retail_xstore_point_of_service 125 enterprise_manager_base_platform 120 zfs_storage_appliance_kit 117 enterprise_manager_ops_center 107 jrockit 107 http_server 105 openjdk 98 supply_chain_products_suite 97 flexcube_universal_banking 95 primavera_unifier 95 webcenter_portal 90 financial_services_analytical_applications_infrastructure 89
Quick Filters
Critical CVEs With Exploits In CISA KEV