6.5
CVE-2026-34306 - Low-Privilege HTTP Exploitation Enabling Confidentiality Breach in Oracle PeopleSoft FIN Project Co…
Vulnerability in the PeopleSoft Enterprise FIN Project Costing product of Oracle PeopleSoft (component: Projects). The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise FIN Pr…
7.5
CVE-2026-34305 - Unauthenticated HTTP Exploitation Allows Unauthorized Data Access in Oracle WebLogic Server Web Ser…
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Web Services). Supported versions that are affected are 12.2.1.4.0, 14.1.1.0.0, 14.1.2.0.0 and 15.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to c…
4.9
CVE-2026-34304 - InnoDB Storage Engine Crash Causes Availability Denial of Service in Oracle MySQL
Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.0-8.0.45, 8.4.0-8.4.8 and 9.0.0-9.6.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server…
6.5
CVE-2026-34303 - MySQL Server Optimizer Denial of Service via Network Abuse
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.0-8.0.45, 8.4.0-8.4.8 and 9.0.0-9.6.0. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise My…
5.5
CVE-2026-34302 - Authorization Bypass in Oracle Workflow Loader Enables Data Tampering and Partial Denial of Service
Vulnerability in the Oracle Workflow product of Oracle E-Business Suite (component: Workflow Loader). Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle Workflow. While the vul…
6.5
CVE-2026-34301 - PeopleSoft FIN Maintenance Management HTTP Vulnerability Exposes Confidential Data
Vulnerability in the PeopleSoft Enterprise FIN Maintenance Management product of Oracle PeopleSoft (component: Work Order Management). The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSo…
6.5
CVE-2026-34300 - Unauthorized Data Access in Oracle PeopleSoft FIN Contracts via HTTP
Vulnerability in the PeopleSoft Enterprise FIN Contracts product of Oracle PeopleSoft (component: Contracts). The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise FIN Contrac…
6.5
CVE-2026-34299 - Network‑Based Low‑Privilege Data Access in Oracle PeopleSoft FIN Management
Vulnerability in the PeopleSoft Enterprise FIN Maintenance Management product of Oracle PeopleSoft (component: Work Order Management). The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSo…
4.7
CVE-2026-34298 - Unauthorized Access to Oracle Applications Framework Personalization Component
Vulnerability in the Oracle Applications Framework product of Oracle E-Business Suite (component: Personalization). Supported versions that are affected are 12.2.9-12.2.15. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle Applicatio…
7.5
CVE-2026-34297 - Unauthenticated HTTP Access Allows Unauthorized Data Retrieval in Oracle HCM Common Architecture
Vulnerability in the Oracle HCM Common Architecture product of Oracle E-Business Suite (component: Knowledge Integration). Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle HCM…