Oracle Security Vulnerabilities (CVEs)
Track 641 security vulnerabilities affecting Oracle products and software. Get instant email alerts when new CVEs are discovered, automated security monitoring, and patch guidance.
This vulnerability in Oracle VM VirtualBox allows a high-privileged attacker with local access to the host system to access sensitive data from Virtua...
Jan 20, 2026An unauthenticated local attacker can cause a denial-of-service (DoS) crash in Oracle VM VirtualBox on Windows hosts. This vulnerability affects Virtu...
Jan 20, 2026A high-severity vulnerability in Oracle VM VirtualBox allows attackers with local high-privilege access to compromise the virtualization software, pot...
Jan 20, 2026This vulnerability in Oracle VM VirtualBox allows a high-privileged attacker with local access to the host system to completely compromise the Virtual...
Jan 20, 2026This vulnerability in Oracle VM VirtualBox allows a high-privileged attacker with local access to the host system to compromise VirtualBox, potentiall...
Jan 20, 2026This vulnerability in Oracle VM VirtualBox allows a high-privileged attacker with local access to the host system to completely compromise the Virtual...
Jan 20, 2026This vulnerability in Oracle FLEXCUBE Universal Banking allows authenticated attackers with low privileges to access sensitive banking data via HTTP r...
Jan 20, 2026An unauthenticated remote attacker can exploit this vulnerability in Oracle Life Sciences Central Coding via HTTP to modify or delete some data and re...
Jan 20, 2026This vulnerability in Oracle VM VirtualBox allows a high-privileged attacker with local access to the host system to read some VirtualBox data and cau...
Jan 20, 2026This vulnerability in Oracle VM VirtualBox allows an unauthenticated attacker on the same physical network segment to potentially take complete contro...
Jan 20, 2026This vulnerability in Oracle VM VirtualBox allows a high-privileged attacker with local access to the host system to potentially compromise the Virtua...
Jan 20, 2026This vulnerability in Oracle VM VirtualBox allows a high-privileged attacker with local access to the host system to potentially compromise the virtua...
Jan 20, 2026This vulnerability in Oracle Life Sciences Central Designer allows authenticated attackers with low privileges to access sensitive data via HTTP reque...
Jan 20, 2026This vulnerability in Oracle PeopleSoft Enterprise SCM Purchasing allows authenticated attackers with low privileges to modify or delete some purchasi...
Jan 20, 2026This vulnerability in Oracle Configurator allows unauthenticated attackers with network access via HTTP to read sensitive data from the application. I...
Jan 20, 2026This vulnerability in Oracle FLEXCUBE Investor Servicing allows authenticated attackers with low privileges to perform unauthorized data manipulation ...
Jan 20, 2026This vulnerability in Oracle Life Sciences Central Designer allows unauthenticated attackers to read sensitive data via HTTP requests. It affects vers...
Jan 20, 2026This vulnerability in Oracle Database Server's Java VM component allows authenticated high-privilege attackers with network access via Oracle Net to c...
Jan 20, 2026This vulnerability in Oracle Business Intelligence Enterprise Edition allows authenticated attackers with local access to the infrastructure to manipu...
Jan 20, 2026An unauthenticated attacker can exploit this vulnerability in Oracle Hospitality OPERA 5 Property Services via HTTP to modify or read limited data, re...
Jan 20, 2026An unauthenticated remote attacker can exploit this vulnerability in Oracle Hospitality OPERA 5 via HTTP to access, modify, or delete sensitive data, ...
Jan 20, 2026This vulnerability in MySQL Server's optimizer component allows authenticated attackers with network access to cause denial of service by crashing or ...
Jan 20, 2026An unauthenticated remote code execution vulnerability in Oracle Agile Product Lifecycle Management for Process allows attackers to completely comprom...
Jan 20, 2026This vulnerability in Oracle Solaris 11 kernel allows unauthenticated attackers with network access via TCP to read sensitive system data. It affects ...
Jan 20, 2026This vulnerability allows unauthenticated attackers with network access via HTTP to cause a denial-of-service (DoS) condition in Oracle Financial Serv...
Oct 21, 2025A high-severity vulnerability in Oracle VM VirtualBox Core allows attackers with local system access to compromise the virtualization software, potent...
Oct 21, 2025This vulnerability in Oracle VM VirtualBox allows a high-privileged attacker with local access to the host system to completely compromise the Virtual...
Oct 21, 2025This vulnerability in Oracle VM VirtualBox allows a high-privileged attacker with local access to the host system to access sensitive data from Virtua...
Oct 21, 2025This vulnerability in Oracle VM VirtualBox allows a high-privileged attacker with local access to the host system to access sensitive data from the vi...
Oct 21, 2025This vulnerability in Oracle VM VirtualBox allows a high-privileged attacker with local access to the host system to completely compromise the Virtual...
Oct 21, 2025A critical vulnerability in Oracle ZFS Storage Appliance Kit's Block Storage component allows authenticated high-privilege attackers with network acce...
Oct 21, 2025This vulnerability allows authenticated high-privilege attackers with network access via HTTP to cause denial of service (DoS) on Oracle ZFS Storage A...
Oct 21, 2025This vulnerability allows high-privileged attackers with network access via HTTP to cause denial of service (DoS) on Oracle ZFS Storage Appliance Kit ...
Oct 21, 2025This vulnerability in Oracle ZFS Storage Appliance Kit allows high-privileged attackers with network access via HTTP to cause denial of service by han...
Oct 21, 2025An unauthenticated remote code execution vulnerability in Oracle Marketing (part of Oracle E-Business Suite) allows attackers to completely compromise...
Oct 21, 2025This vulnerability in Oracle Database Server's Java VM component allows unauthenticated attackers with network access via Oracle Net to potentially mo...
Oct 21, 2025This vulnerability allows authenticated attackers with low privileges to read sensitive data from Oracle Life Sciences InForm web servers. It affects ...
Oct 21, 2025This vulnerability in Oracle Life Sciences InForm allows unauthenticated attackers to modify or read limited data by tricking users into interacting w...
Oct 21, 2025This vulnerability in Oracle Health Sciences Data Management Workbench allows authenticated high-privilege attackers to access sensitive data via HTTP...
Oct 21, 2025This vulnerability in Oracle ZFS Storage Appliance Kit allows high-privileged attackers with network access via HTTP to cause a denial of service by h...
Oct 21, 2025This critical vulnerability in Oracle Identity Manager allows unauthenticated attackers to remotely compromise the system via HTTP requests, leading t...
Oct 21, 2025A local privilege escalation vulnerability in Oracle VM VirtualBox allows authenticated attackers with low privileges on the host system to access sen...
Oct 21, 2025This vulnerability in Oracle VM VirtualBox allows a low-privileged attacker with local access to the host system to potentially take over VirtualBox t...
Oct 21, 2025This vulnerability in Oracle PeopleSoft Enterprise FIN Payables 9.2 allows authenticated attackers with network access to modify or delete financial d...
Oct 21, 2025This vulnerability in Oracle Essbase Web Platform allows authenticated attackers with low privileges to remotely manipulate or access critical data vi...
Oct 21, 2025This vulnerability in Oracle PeopleSoft Enterprise PeopleTools allows authenticated attackers with low privileges to read sensitive data they shouldn'...
Oct 21, 2025This vulnerability in Oracle Financial Services Analytical Applications Infrastructure allows authenticated attackers with low privileges to remotely ...
Oct 21, 2025An unauthenticated remote attacker can exploit this vulnerability in Oracle WebLogic Server via HTTP/2 to cause a denial of service, resulting in serv...
Oct 21, 2025This vulnerability in Oracle BI Publisher allows authenticated attackers with low privileges to access sensitive data via the Web Service API. It affe...
Oct 21, 2025This vulnerability in Oracle MySQL Server allows high-privileged attackers with network access to cause a denial of service (DoS) by crashing or hangi...
Oct 21, 2025Why Monitor Oracle Security Vulnerabilities?
Real-time CVE tracking: Our automated system monitors 641+ known vulnerabilities affecting Oracle products and software packages. Stay ahead of emerging threats with instant email notifications when new security issues are discovered.
Automated security monitoring: Unlike manual CVE checking, FixTheCVE automatically scans your servers and detects vulnerable Oracle packages in under 60 seconds. No agents required - completely agentless scanning that works across Oracle deployments.
Free vulnerability database: Access detailed information about every Oracle CVE including CVSS scores, severity ratings, affected versions, and actionable patch guidance. Filter by critical, high, medium, or low severity to prioritize your security remediation efforts.
🚀 Get Started in 60 Seconds
- Register free account & add your servers
- Run one-time scan or schedule automatic monitoring (every 1-24 hours)
- Receive instant alerts when new Oracle CVEs affect your systems
- Access dashboard with severity breakdown & fix instructions
