6.5
CVE-2026-34280 - High‑Privilege HTTP Access Allows Unauthorized Data Modification in Oracle PeopleSoft HCM 9.2
Vulnerability in the PeopleSoft Enterprise HCM Human Resources product of Oracle PeopleSoft (component: Job Profile Manager). The supported version that is affected is 9.2. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise PeopleSoft Enter…
9.1
CVE-2026-34279 - Event Management Remote Platform Compromise in Oracle Enterprise Manager Base Platform (13.5/24.1)
Vulnerability in the Oracle Enterprise Manager Base Platform product of Oracle Enterprise Manager (component: Event Management). Supported versions that are affected are 13.5 and 24.1. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Orac…
6.6
CVE-2026-34277 - Improper Access Control in Oracle PeopleSoft Enterprise PeopleTools Allows Unauthorized Data Modifi…
Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component: Fluid Core). Supported versions that are affected are 8.61-8.62. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise PeopleT…
9.8
CVE-2026-34275 - Remote Code Execution via HTTP in Oracle Advanced Inbound Telephony
Vulnerability in the Oracle Advanced Inbound Telephony product of Oracle E-Business Suite (component: Setup and Administration). Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Orac…
6.1
CVE-2026-34274 - Unauthenticated HTTP Access Allows Data Modification in Oracle Configurator
Vulnerability in the Oracle Configurator product of Oracle E-Business Suite (component: User Interface). Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Configurator. Succes…
5.3
CVE-2026-34273 - Unauthenticated HTTP Data Read Vulnerability in Oracle GoldenGate 23.4-23.10
Vulnerability in Oracle GoldenGate (component: Libraries). Supported versions that are affected are 23.4-23.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle GoldenGate. Successful attacks of this vulnerability can result in un…
6.1
CVE-2026-34269 - Unauthenticated Portal Access Enables Unauthorized Data Modification in Oracle PeopleSoft PeopleToo…
Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component: Portal). Supported versions that are affected are 8.61-8.62. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSoft Enterprise PeopleTools…
6.5
CVE-2026-34266 - HTTP-Based Data Manipulation via High Privileges in PeopleSoft HCM Absence Management
Vulnerability in the PeopleSoft Enterprise HCM Absence Management product of Oracle PeopleSoft (component: Absence Management). The supported version that is affected is 9.2. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise PeopleSoft Ent…
5.4
CVE-2026-22019 - HTTP‑based Privilege‑Escalation and Data Manipulation in Oracle PeopleSoft HCM Shared Components
Vulnerability in the PeopleSoft Enterprise HCM Shared Components product of Oracle PeopleSoft (component: Person Search). The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise…
3.8
CVE-2026-22014 -
Vulnerability in the Oracle User Management product of Oracle E-Business Suite (component: Workflow and Business Events). Supported versions that are affected are 12.2.7-12.2.15. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle User…