CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedhatCVE•added yesterday•2 views

CVE-2026-35232

Vulnerability in Oracle Fusion Middleware component: Dynamic Monitoring Service. Supported versions that are affected are 12.2.1.4.0 and 14.1.2.0.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Fusion Middleware. Successful...

5.4CVSS7.3AI score0.00028EPSS

Nuclei•added 2026/05/25 4:37 a.m.•43 views

Oracle Fusion Middleware Weblogic Server - Remote OS Command Execution

The Oracle WebLogic Server component of Oracle Fusion Middleware Web Services versions 10.3.6.0, 12.1.3.0, 12.2.1.0, 12.2.1.1 and 12.2.1.2 is susceptible to a difficult to exploit vulnerability that could allow unauthenticated attackers with network access via HTTP to compromise Oracle WebLogic...

7.4CVSS7.4AI score0.94412EPSS

Exploits9References5

CNVD•added 2026/04/22 12:0 a.m.•1 views

Oracle Fusion Middleware Dynamic Monitoring Service Cross-Site Scripting Vulnerability

Oracle Fusion Middleware is a suite of middleware products for building and deploying enterprise-class applications, integrations and business processes. A cross-site scripting vulnerability exists in the Dynamic Monitoring Service component of Oracle Fusion Middleware. The vulnerability stems fr...

5.4CVSS7.4AI score0.00028EPSS

Exploits0

EUVD•added 2026/04/21 9:31 p.m.•3 views

EUVD-2026-24437

5.4CVSS5.7AI score0.00028EPSS

EUVD•added 2026/04/21 9:31 p.m.•2 views

EUVD-2026-24451

Vulnerability in the Oracle Application Development Framework ADF product of Oracle Fusion Middleware component: ADF Faces. Supported versions that are affected are 12.2.1.4.0 and 14.1.2.0.0. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where...

7.8CVSS5.7AI score0.00028EPSS

EUVD•added 2026/04/21 9:31 p.m.•2 views

EUVD-2026-24370

Vulnerability in the Oracle Identity Manager Connector product of Oracle Fusion Middleware component: Core. The supported version that is affected is 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Oracle Identity Manager...

9.1CVSS5.7AI score0.00068EPSS

EUVD•added 2026/04/21 9:31 p.m.•2 views

EUVD-2026-24373

Vulnerability in the Oracle Identity Manager Connector product of Oracle Fusion Middleware component: Core. The supported version that is affected is 12.2.1.4.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Oracle Identity Manager...

5.9CVSS5.7AI score0.00054EPSS

EUVD•added 2026/04/21 9:31 p.m.•4 views

EUVD-2026-24380

5.9CVSS5.7AI score0.00027EPSS

NVD•added 2026/04/21 9:16 p.m.•3 views

CVE-2026-35252

Vulnerability in the Oracle Security Service product of Oracle Fusion Middleware component: C Oracle SSL API. Supported versions that are affected are 12.2.1.4.0 and 12.1.3.0.0. Difficult to exploit vulnerability allows low privileged attacker with network access via HTTPS to compromise Oracle...

6.4CVSS0.00052EPSS

NVD•added 2026/04/21 9:16 p.m.•5 views

CVE-2026-35243

7.8CVSS0.00028EPSS

NVD•added 2026/04/21 9:16 p.m.•3 views

CVE-2026-35232

5.4CVSS0.00028EPSS

NVD•added 2026/04/21 9:16 p.m.•2 views

CVE-2026-34294

5.9CVSS0.00027EPSS

NVD•added 2026/04/21 9:16 p.m.•5 views

CVE-2026-34287

9.1CVSS0.00068EPSS

7.8CVSS5.7AI score0.00028EPSS

CVE-2026-35243

5.4CVSS5.7AI score0.00028EPSS

CVE-2026-35232

6.5CVSS5.8AI score0.00027EPSS

CVE-2026-34315

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware component: Web Services. Supported versions that are affected are 12.2.1.4.0, 14.1.1.0.0, 14.1.2.0.0 and 15.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to...

7.5CVSS5.7AI score0.00051EPSS

CVE-2026-34290

ATTACKERKB•added 2026/04/21 8:35 p.m.•3 views

CVE-2026-34286

9.1CVSS5.7AI score0.00024EPSS