CVE Vulnerability Catalog
Translated CVE descriptions from NVD NIST — in English
CISA KEV catalog updated: (v2026.07.07)
Vulnerability in the Oracle Cost Management product of Oracle E-Business Suite (component: Cost Planning). Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Cost Management.
Vulnerability in the Oracle Configure to Order product of Oracle E-Business Suite allows low privileged attackers with network access via HTTP to compromise the system. Successful attacks can lead to unauthorized creation, deletion, or modification of critical data.
Vulnerability in the Oracle Cost Management product of Oracle E-Business Suite (component: Cost Planning) allows a high privileged attacker with network access via HTTP to compromise Oracle Cost Management. The impact on confidentiality, integrity, and availability is significant.
Vulnerability in the Oracle iSetup product of Oracle E-Business Suite, affecting the General Ledger Update Transform, Reports component. Easily exploitable by a low privileged attacker with network access via HTTP, potentially leading to takeover of Oracle iSetup.
Vulnerability in the Oracle Complex Maintenance, Repair and Overhaul product of Oracle E-Business Suite, affecting versions 12.2.3-12.2.15. It allows a low privileged attacker with network access via HTTP to compromise Oracle Complex Maintenance, Repair and Overhaul.
Vulnerability in the Oracle Complex Maintenance, Repair and Overhaul product of Oracle E-Business Suite, affecting versions 12.2.3-12.2.15. It allows a low privileged attacker with network access via HTTP to compromise Oracle Complex Maintenance, Repair and Overhaul.
Vulnerability in the Oracle Enterprise Asset Management product of Oracle E-Business Suite, affecting component: Internal Operations. Versions 12.2.3-12.2.15 are susceptible to easily exploitable attacks that can lead to unauthorized access to critical data.
A vulnerability in the Oracle Enterprise Asset Management product of Oracle E-Business Suite allows low privileged attackers with network access via HTTP to compromise the system. Versions 12.2.6-12.2.15 are affected by this easily exploitable vulnerability.
Vulnerability in the Oracle Cost Management product of Oracle E-Business Suite (component: Cost Planning) allows a low privileged attacker with network access via HTTP to compromise Oracle Cost Management. Affected versions are 12.2.3-12.2.15.
Vulnerability in the Oracle Spares Management product of Oracle E-Business Suite allows a low privileged attacker with network access via HTTPS to compromise Oracle Spares Management. Affected versions are 12.2.3-12.2.15.
Vulnerability in the Oracle Receivables product of Oracle E-Business Suite, affecting versions 12.2.3-12.2.15. It allows an unauthenticated attacker with network access via SOAP to compromise Oracle Receivables.
Vulnerability in the Siebel CRM Cloud Applications product of Oracle Siebel CRM, affecting the Siebel Cloud Manager component. It allows a low privileged attacker with access to the infrastructure where Siebel CRM Cloud Applications runs to compromise these applications.
Vulnerability in the Siebel CRM Cloud Applications product of Oracle (component: Siebel Cloud Manager) affects versions 17.0-26.5. It allows an unauthenticated attacker with access to the physical communication segment to compromise the Siebel CRM Cloud Applications.
A vulnerability in the Oracle HR Intelligence product of Oracle E-Business Suite allows a high privileged attacker with network access via HTTP to compromise Oracle HR Intelligence. Supported versions affected are 12.2.3-12.2.15.
Vulnerability in the Siebel CRM Cloud Applications product of Oracle Siebel CRM, affecting the Siebel Cloud Manager component. It allows an easily exploitable attack by a low privileged attacker with network access via HTTP, potentially leading to takeover of Siebel CRM Cloud Applications.
Vulnerability in the Siebel CRM Cloud Applications product of Oracle Siebel CRM, affecting versions 17.0-26.5. It allows an unauthenticated attacker with network access via HTTP to compromise Siebel CRM Cloud Applications.
Vulnerability in the Oracle Process Manufacturing Product Development product of Oracle E-Business Suite, affecting the Quality Management Specs component. Easily exploitable by a low privileged attacker with network access via HTTP, potentially leading to takeover of Oracle Process Manufacturing Product Development.
Vulnerability in the Oracle Complex Maintenance, Repair and Overhaul product of Oracle E-Business Suite, affecting versions 12.2.3-12.2.15. It allows a low privileged attacker with network access via HTTP to compromise Oracle Complex Maintenance, Repair and Overhaul.
A vulnerability in the Oracle Solaris product (component: Filesystem) allows a low privileged attacker with logon to the infrastructure to compromise the system. Successful attacks can lead to unauthorized access to critical data and complete denial of service.
Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards, concerning business logic infrastructure security. Versions 9.2.0.0-9.2.26.2 are susceptible to easily exploitable attacks that can lead to takeover of JD Edwards EnterpriseOne Tools.

