6.5
CVE-2026-34299 - Network‑Based Low‑Privilege Data Access in Oracle PeopleSoft FIN Management
Vulnerability in the PeopleSoft Enterprise FIN Maintenance Management product of Oracle PeopleSoft (component: Work Order Management). The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSo…
4.7
CVE-2026-34298 - Unauthorized Access to Oracle Applications Framework Personalization Component
Vulnerability in the Oracle Applications Framework product of Oracle E-Business Suite (component: Personalization). Supported versions that are affected are 12.2.9-12.2.15. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle Applicatio…
7.5
CVE-2026-34297 - Unauthenticated HTTP Access Allows Unauthorized Data Retrieval in Oracle HCM Common Architecture
Vulnerability in the Oracle HCM Common Architecture product of Oracle E-Business Suite (component: Knowledge Integration). Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle HCM…
4.3
CVE-2026-34296 - Oracle Agile PDM for Process 6.2.4 HTTP Read Access Vulnerability
Vulnerability in the Oracle Agile Product Lifecycle Management for Process product of Oracle Supply Chain (component: Product Quality Management). The supported version that is affected is 6.2.4. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compr…
6.5
CVE-2026-34295 - Unauthorized Data Access via HTTP in Oracle PeopleSoft SCM Purchasing 9.2
Vulnerability in the PeopleSoft Enterprise SCM Purchasing product of Oracle PeopleSoft (component: Purchasing). The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise SCM Purch…
5.9
CVE-2026-34294 - Unauthorized Data Modification via LDAP in Oracle Identity Manager Connector
Vulnerability in the Oracle Identity Manager Connector product of Oracle Fusion Middleware (component: Microsoft Active Directory). The supported version that is affected is 12.2.1.4.0. Difficult to exploit vulnerability allows low privileged attacker with network access via LDAP to compromise Or…
7.2
CVE-2026-34292 - High‑Privilege Remote Code Execution in Oracle WebLogic Server via HTTP
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core). Supported versions that are affected are 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle WebLogic Server…
8.7
CVE-2026-34291 - Unauthenticated Remote Access and Data Modification via Oracle HTTP Server Vulnerability
Vulnerability in the Oracle HTTP Server product of Oracle Fusion Middleware (component: Core). Supported versions that are affected are 12.2.1.4.0 and 14.1.2.0.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle HTTP Server. Whi…
7.5
CVE-2026-34290 - Denial of Service via Unauthenticated TCP in Oracle Identity Manager Connector
Vulnerability in the Oracle Identity Manager Connector product of Oracle Fusion Middleware (component: Core). The supported version that is affected is 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via TCP to compromise Oracle Identity Manager Co…
5.9
CVE-2026-34289 - Unauthenticated HTTPS Access Enables Unauthorized Data Exposure in Oracle Identity Manager Connector
Vulnerability in the Oracle Identity Manager Connector product of Oracle Fusion Middleware (component: Core). The supported version that is affected is 12.2.1.4.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Oracle Identity Manage…