7.8
CVE-2026-35243 - Low‑Privilege Oracle ADF Faces Vulnerability Allows System Takeover
Vulnerability in the Oracle Application Development Framework (ADF) product of Oracle Fusion Middleware (component: ADF Faces). Supported versions that are affected are 12.2.1.4.0 and 14.1.2.0.0. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure wher…
7.5
CVE-2026-35242 - Local Privilege Escalation in Oracle VM VirtualBox 7.2.6 Allows Full Compromise
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The supported version that is affected is 7.2.6. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Orac…
5.7
CVE-2026-35241 - Unauthorized Data Access via HTTP in PeopleSoft Research Tracking
Vulnerability in the PeopleSoft Enterprise CS Student Records product of Oracle PeopleSoft (component: Research Tracking). The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSoft Enterpris…
5.4
CVE-2026-35232 - Unauthorized Data Modification via Oracle Fusion Middleware Dynamic Monitoring Service
Vulnerability in Oracle Fusion Middleware (component: Dynamic Monitoring Service). Supported versions that are affected are 12.2.1.4.0 and 14.1.2.0.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Fusion Middleware. Successful a…
7.5
CVE-2026-35231 - Unauthenticated HTTP Data Disclosure in Oracle Financial Services Transaction Filtering
Vulnerability in the Oracle Financial Services Transaction Filtering product of Oracle Financial Services Applications (component: User Interface). The supported version that is affected is 8.1.2.8.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to…
7.5
CVE-2026-35230 - Local Privilege Escalation in Oracle VM VirtualBox Core Component
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The supported version that is affected is 7.2.6. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Orac…
7.5
CVE-2026-35229 - Java VM Component Vulnerability Allows Unauthenticated Access to Database Data via Oracle Net
Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are affected are 19.3-19.30 and 21.3-21.21. Easily exploitable vulnerability allows unauthenticated attacker with network access via Oracle Net to compromise Java VM. Successful attacks of this vulnerabilit…
6.8
CVE-2026-34325 - Low-Privilege UI Flaw Allows Unauthorized Data Access, Modification, and Denial of Service in Oracl…
Vulnerability in the Oracle Financial Services Analytical Applications Infrastructure product of Oracle Financial Services Applications (component: User Interface). Supported versions that are affected are 8.0.7.9, 8.0.8.7 and 8.1.2.5. Easily exploitable vulnerability allows low privileged attack…
6.5
CVE-2026-34324 - Unauthenticated HTTP Access Control Flaw in Oracle Life Sciences InForm
Vulnerability in the Oracle Life Sciences InForm product of Oracle Life Science Applications (component: App Server). Supported versions that are affected are 7.0.1.0 and 7.0.1.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Li…
6.3
CVE-2026-34323 - Unauthenticated HTTP Attack Enables Unauthorized Data Access and Partial Denial of Service in Oracl…
Vulnerability in the Oracle Life Sciences InForm product of Oracle Life Science Applications (component: IDM Authentication). Supported versions that are affected are 7.0.1.0 and 7.0.1.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise O…