7.5
CVE-2026-34305 - Unauthenticated HTTP Exploitation Allows Unauthorized Data Access in Oracle WebLogic Server Web Ser…
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Web Services). Supported versions that are affected are 12.2.1.4.0, 14.1.1.0.0, 14.1.2.0.0 and 15.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to c…
5.5
CVE-2026-34302 - Authorization Bypass in Oracle Workflow Loader Enables Data Tampering and Partial Denial of Service
Vulnerability in the Oracle Workflow product of Oracle E-Business Suite (component: Workflow Loader). Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle Workflow. While the vul…
6.5
CVE-2026-34301 - PeopleSoft FIN Maintenance Management HTTP Vulnerability Exposes Confidential Data
Vulnerability in the PeopleSoft Enterprise FIN Maintenance Management product of Oracle PeopleSoft (component: Work Order Management). The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSo…
6.5
CVE-2026-34300 - Unauthorized Data Access in Oracle PeopleSoft FIN Contracts via HTTP
Vulnerability in the PeopleSoft Enterprise FIN Contracts product of Oracle PeopleSoft (component: Contracts). The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise FIN Contrac…
6.5
CVE-2026-34299 - Network‑Based Low‑Privilege Data Access in Oracle PeopleSoft FIN Management
Vulnerability in the PeopleSoft Enterprise FIN Maintenance Management product of Oracle PeopleSoft (component: Work Order Management). The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSo…
4.7
CVE-2026-34298 - Unauthorized Access to Oracle Applications Framework Personalization Component
Vulnerability in the Oracle Applications Framework product of Oracle E-Business Suite (component: Personalization). Supported versions that are affected are 12.2.9-12.2.15. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle Applicatio…
7.5
CVE-2026-34297 - Unauthenticated HTTP Access Allows Unauthorized Data Retrieval in Oracle HCM Common Architecture
Vulnerability in the Oracle HCM Common Architecture product of Oracle E-Business Suite (component: Knowledge Integration). Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle HCM…
4.3
CVE-2026-34296 - Oracle Agile PDM for Process 6.2.4 HTTP Read Access Vulnerability
Vulnerability in the Oracle Agile Product Lifecycle Management for Process product of Oracle Supply Chain (component: Product Quality Management). The supported version that is affected is 6.2.4. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compr…
6.5
CVE-2026-34295 - Unauthorized Data Access via HTTP in Oracle PeopleSoft SCM Purchasing 9.2
Vulnerability in the PeopleSoft Enterprise SCM Purchasing product of Oracle PeopleSoft (component: Purchasing). The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise SCM Purch…
5.9
CVE-2026-34294 - Unauthorized Data Modification via LDAP in Oracle Identity Manager Connector
Vulnerability in the Oracle Identity Manager Connector product of Oracle Fusion Middleware (component: Microsoft Active Directory). The supported version that is affected is 12.2.1.4.0. Difficult to exploit vulnerability allows low privileged attacker with network access via LDAP to compromise Or…