CVE Vulnerability Catalog

Translated CVE descriptions from NVD NIST — in English

CISA KEV catalog updated: (v2026.07.07)

CVE-2026-35326
High

Vulnerability in the Oracle WebCenter Content product of Oracle Fusion Middleware allows a high privileged attacker with network access via HTTP to compromise Oracle WebCenter Content. Affected versions are 12.2.1.4.0 and 14.1.2.0.0.

CVE-2026-35325
High

Vulnerability in the Oracle WebCenter Content product of Oracle Fusion Middleware allows a low privileged attacker with network access via HTTP to take over Oracle WebCenter Content. Affected versions are 12.2.1.4.0 and 14.1.2.0.0.

CVE-2026-35324
High

A vulnerability in the Oracle WebCenter Content product of Oracle Fusion Middleware allows a low privileged attacker with network access via HTTP to compromise Oracle WebCenter Content. Affected versions are 12.2.1.4.0 and 14.1.2.0.0.

CVE-2026-35322
High

Vulnerability in the Oracle WebCenter Content product of Oracle Fusion Middleware allows a low privileged attacker with network access via HTTP to compromise Oracle WebCenter Content. It affects versions 12.2.1.4.0 and 14.1.2.0.0.

CVE-2026-35318
High

Vulnerability in the Oracle WebCenter Sites product of Oracle Fusion Middleware allows a low privileged attacker with network access via HTTP to compromise Oracle WebCenter Sites. Affects versions 12.2.1.4.0 and 14.1.2.0.0.

CVE-2026-35317
High

A vulnerability in the Oracle WebCenter Content product of Oracle Fusion Middleware allows low privileged attackers with network access via HTTP to compromise Oracle WebCenter Content. Affected versions are 12.2.1.4.0 and 14.1.2.0.0.

CVE-2026-35315
High

Vulnerability in the Oracle WebCenter Content product of Oracle Fusion Middleware allows a low privileged attacker with network access via HTTP to compromise Oracle WebCenter Content. Affects versions 12.2.1.4.0 and 14.1.2.0.0.

CVE-2026-35314
High

Vulnerability in the Oracle Access Manager product of Oracle Fusion Middleware (component: Web Server Plugin) allows unauthenticated attackers with network access via HTTP to compromise Oracle Access Manager. Successful attacks can lead to unauthorized access to data and partial denial of service.

CVE-2026-35311
High

Vulnerability in the WebLogic Server product of Oracle Fusion Middleware allows a low privileged attacker with network access via HTTP to compromise WebLogic Server. Affected versions are 12.2.1.4.0 and 14.1.2.0.0.

CVE-2026-35303
High

Vulnerability in the WebLogic Server product of Oracle Fusion Middleware (component: Console) allows a low privileged attacker with network access via HTTP to compromise WebLogic Server. Affected versions are 12.2.1.4.0 and 14.1.1.0.0.

CVE-2026-35302
High

A vulnerability in the WebLogic Server product of Oracle Fusion Middleware (component: Console) allows an unauthenticated attacker with network access to remotely compromise the server. It requires human interaction from a person other than the attacker, making exploitation difficult.

CVE-2026-35299
High

Vulnerability in the WebLogic Server product of Oracle Fusion Middleware (component: Console) allows a low privileged attacker with network access via HTTP to compromise WebLogic Server. Affected versions are 12.2.1.4.0 and 14.1.1.0.0.

CVE-2026-35295
High

Vulnerability in the Oracle WebCenter Sites product of Oracle Fusion Middleware allows a low privileged attacker with network access via HTTP to compromise Oracle WebCenter Sites. Affected versions are 12.2.1.4.0 and 14.1.2.0.0.

CVE-2026-35289
High

Vulnerability in the PeopleSoft Enterprise PT PeopleTools product of Oracle, affecting the Deployment Package component. Versions 8.61 and 8.62 are vulnerable to attacks that can lead to system takeover by an unauthenticated attacker with network access via HTTPS.

CVE-2026-35288
High

Vulnerability in the PeopleSoft Enterprise PT PeopleTools product of Oracle affects the Deployment Package component. Versions 8.61 and 8.62 are susceptible to easily exploitable attacks that can lead to system takeover by a high-privileged attacker.

CVE-2026-35279
High

Vulnerability in the PeopleSoft Enterprise PT PeopleTools product of Oracle, affecting versions 8.61 and 8.62, allows an unauthenticated attacker with network access via HTTP to compromise PeopleSoft Enterprise PT PeopleTools.

CVE-2026-35276
High

Vulnerability in the PeopleSoft Enterprise PT PeopleTools product of Oracle, affecting the application server component. Supported versions 8.61 and 8.62 are vulnerable, allowing an unauthenticated attacker to remotely take control of the system.

CVE-2026-35275
High

A vulnerability in the Oracle VM VirtualBox product (component: Shared Folders) allows a low privileged attacker to compromise Oracle VM VirtualBox. Attacks may significantly impact additional products, increasing the scope of the threat.

CVE-2026-35274
High

Vulnerability in the PeopleSoft Enterprise PT PeopleTools product of Oracle, affecting versions 8.61 and 8.62. It allows an unauthenticated attacker with network access via HTTP to compromise the system.

CVE-2026-35272
High

Vulnerability in the PeopleSoft Enterprise PT PeopleTools product of Oracle, affecting the Deployment Package component. Versions 8.61 and 8.62 are susceptible to easily exploitable attacks that can lead to system takeover by an unauthorized user.

PreviousPage 112 of 3336Next

Vulnerability data from NVD (NIST) · CISA KEV · EPSS