8.1
CVE-2026-34309 - Low-Privilege HTTP Exploit Enables Unauthorized Data Modification in PeopleSoft Enterprise PeopleTo…
Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component: Security). Supported versions that are affected are 8.61-8.62. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise PeopleTool…
6.5
CVE-2026-34308 - Denial of Service via Malformed JSON in MySQL Server
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: JSON). Supported versions that are affected are 8.0.0-8.0.45, 8.4.0-8.4.8 and 9.0.0-9.6.0. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL S…
5.4
CVE-2026-34307 - Low‑Privilege HTTP Data Modification in Oracle PeopleSoft Workflow
Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component: Workflow). Supported versions that are affected are 8.61-8.62. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise PeopleTool…
6.5
CVE-2026-34306 - Low-Privilege HTTP Exploitation Enabling Confidentiality Breach in Oracle PeopleSoft FIN Project Co…
Vulnerability in the PeopleSoft Enterprise FIN Project Costing product of Oracle PeopleSoft (component: Projects). The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise FIN Pr…
7.5
CVE-2026-34305 - Unauthenticated HTTP Exploitation Allows Unauthorized Data Access in Oracle WebLogic Server Web Ser…
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Web Services). Supported versions that are affected are 12.2.1.4.0, 14.1.1.0.0, 14.1.2.0.0 and 15.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to c…
4.9
CVE-2026-34304 - InnoDB Storage Engine Crash Causes Availability Denial of Service in Oracle MySQL
Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.0-8.0.45, 8.4.0-8.4.8 and 9.0.0-9.6.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server…
6.5
CVE-2026-34303 - MySQL Server Optimizer Denial of Service via Network Abuse
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.0-8.0.45, 8.4.0-8.4.8 and 9.0.0-9.6.0. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise My…
5.5
CVE-2026-34302 - Authorization Bypass in Oracle Workflow Loader Enables Data Tampering and Partial Denial of Service
Vulnerability in the Oracle Workflow product of Oracle E-Business Suite (component: Workflow Loader). Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle Workflow. While the vul…
6.5
CVE-2026-34301 - PeopleSoft FIN Maintenance Management HTTP Vulnerability Exposes Confidential Data
Vulnerability in the PeopleSoft Enterprise FIN Maintenance Management product of Oracle PeopleSoft (component: Work Order Management). The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSo…
6.5
CVE-2026-34300 - Unauthorized Data Access in Oracle PeopleSoft FIN Contracts via HTTP
Vulnerability in the PeopleSoft Enterprise FIN Contracts product of Oracle PeopleSoft (component: Contracts). The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise FIN Contrac…