Oracle Security Vulnerabilities (CVEs)
Track 679 security vulnerabilities affecting Oracle products and software. Get instant email alerts when new CVEs are discovered, automated security monitoring, and patch guidance.
This vulnerability in MySQL Server's optimizer component allows authenticated attackers with low privileges to cause denial of service by crashing or ...
Jan 21, 2025This vulnerability in MySQL Server's InnoDB component allows high-privileged attackers with network access to cause a denial of service by crashing or...
Jan 21, 2025This vulnerability in Oracle MySQL Server allows high-privileged attackers with network access to cause a denial of service (DoS) by crashing or hangi...
Jan 21, 2025This vulnerability in Oracle Project Foundation allows authenticated attackers with low privileges to manipulate or access sensitive data via HTTP req...
Jan 21, 2025This cross-site request forgery (CSRF) vulnerability in Oracle JD Edwards EnterpriseOne Tools allows authenticated attackers with low privileges to tr...
Jan 21, 2025This vulnerability in MySQL Server's privilege management component allows authenticated attackers with high privileges to cause denial of service by ...
Jan 21, 2025This vulnerability in MySQL Server's InnoDB component allows authenticated high-privileged attackers to cause denial of service (server crashes/hangs)...
Jan 21, 2025This vulnerability in MySQL Server's DDL component allows high-privileged attackers with network access to cause denial of service by crashing or hang...
Jan 21, 2025This vulnerability in MySQL Server's InnoDB component allows high-privileged attackers with network access to cause a denial of service by crashing or...
Jan 21, 2025This vulnerability in MySQL Server's Optimizer component allows high-privileged attackers with network access to cause denial of service by crashing o...
Jan 21, 2025This vulnerability in Oracle JD Edwards EnterpriseOne Tools allows authenticated attackers with low privileges to manipulate business logic via HTTP r...
Jan 21, 2025This vulnerability in the Linux kernel allows bypassing lockdown mode when IMA appraisal is configured with 'ima_appraise=log' boot parameter and Secu...
Dec 24, 2024This vulnerability in Oracle Agile PLM Framework allows unauthenticated attackers to remotely access sensitive data via HTTP. It affects organizations...
Nov 18, 2024This vulnerability in Oracle Banking Liquidity Management allows authenticated attackers with network access to potentially compromise the system thro...
Oct 15, 2024This vulnerability in Oracle PeopleSoft Enterprise Learning Management 9.2 allows authenticated attackers with low privileges to manipulate or view se...
Oct 15, 2024This vulnerability in Oracle Contract Lifecycle Management for Public Sector allows authenticated attackers with network access via HTTP to perform un...
Oct 15, 2024This vulnerability in Oracle Service Contracts allows authenticated attackers with low privileges to perform unauthorized data manipulation and access...
Oct 15, 2024This vulnerability in Oracle Financials (E-Business Suite) allows authenticated attackers with low privileges to perform unauthorized data manipulatio...
Oct 15, 2024This vulnerability in Oracle VM VirtualBox allows a high-privileged attacker with local access to the host system to access sensitive data from Virtua...
Oct 15, 2024This vulnerability in Oracle WebLogic Server allows unauthenticated attackers to cause denial of service by crashing or hanging the server via HTTP re...
Oct 15, 2024This vulnerability in Oracle Work in Process allows authenticated attackers with network access to manipulate critical data or gain unauthorized acces...
Oct 15, 2024This vulnerability in Oracle Cost Management allows authenticated attackers with network access to manipulate critical data or access sensitive inform...
Oct 15, 2024This vulnerability in Oracle Incentive Compensation allows authenticated attackers with low privileges to perform unauthorized data manipulation and a...
Oct 15, 2024This vulnerability in Oracle Field Service allows authenticated attackers with low privileges to perform unauthorized data manipulation and access sen...
Oct 15, 2024This vulnerability in Oracle VM VirtualBox allows authenticated attackers with local access to cause denial of service (crashes/hangs) and potentially...
Oct 15, 2024This vulnerability in Oracle Site Hub allows authenticated attackers with low privileges to perform unauthorized data manipulation and access sensitiv...
Oct 15, 2024This vulnerability in Oracle E-Business Suite's Installed Base component allows unauthenticated attackers to read sensitive data via HTTP requests. It...
Oct 15, 2024This CVE describes a vulnerability in Oracle VM VirtualBox that allows a high-privileged attacker with local access to the host system to potentially ...
Oct 15, 2024This vulnerability in Oracle Application Express allows authenticated attackers with network access to potentially modify or read some data within the...
Oct 15, 2024This vulnerability in Oracle Process Manufacturing Product Development allows authenticated attackers with low privileges to perform unauthorized data...
Oct 15, 2024This vulnerability in Oracle Product Hub allows authenticated attackers with low privileges to manipulate critical data or access sensitive informatio...
Oct 15, 2024This vulnerability in Oracle BI Publisher allows authenticated attackers with low privileges to gain complete control over the system via HTTP request...
Oct 15, 2024This vulnerability in Oracle Service Bus allows unauthenticated attackers with network access via HTTP to access sensitive data. It affects Oracle Fus...
Oct 15, 2024This vulnerability in Oracle VM VirtualBox allows a low-privileged attacker with local access to compromise the virtualization software, potentially a...
Oct 15, 2024This vulnerability in MySQL Server's thread pooling component allows authenticated attackers with network access to cause a denial of service by crash...
Oct 15, 2024This vulnerability in MySQL Server's Optimizer component allows high-privileged attackers with network access to cause denial of service by crashing o...
Oct 15, 2024This vulnerability allows low-privileged attackers with network access and Create Session privilege to modify data in Oracle Database Core. It affects...
Oct 15, 2024This vulnerability in Oracle WebLogic Server allows unauthenticated attackers with network access via T3 or IIOP protocols to access sensitive data. I...
Oct 15, 2024This vulnerability in MySQL Server's InnoDB component allows high-privileged attackers with network access to cause a denial of service by crashing or...
Oct 15, 2024This vulnerability in MySQL Server's InnoDB component allows high-privileged attackers with network access to cause a denial of service (DoS) by crash...
Oct 15, 2024This vulnerability in MySQL Server's optimizer component allows authenticated attackers with low privileges to cause denial of service by crashing or ...
Oct 15, 2024This vulnerability in Oracle MySQL Server's Health Monitor component allows high-privileged attackers with network access to cause denial of service b...
Oct 15, 2024This vulnerability in Oracle PeopleSoft Enterprise PeopleTools allows authenticated attackers with low privileges to perform unauthorized data manipul...
Oct 15, 2024This vulnerability in Oracle WebLogic Server allows unauthenticated attackers with network access via T3 or IIOP protocols to fully compromise the ser...
Oct 15, 2024This vulnerability in MySQL Server's InnoDB component allows high-privileged attackers with network access to cause a denial of service by crashing or...
Oct 15, 2024This vulnerability in MySQL Server's optimizer component allows authenticated high-privilege attackers to cause denial of service by crashing or hangi...
Oct 15, 2024This vulnerability in Oracle MySQL Server's Full-Text Search (FTS) component allows high-privileged attackers with network access to cause a denial of...
Oct 15, 2024This vulnerability in Oracle Service Bus allows authenticated attackers with low privileges to access sensitive data via HTTP requests. It affects Ora...
Oct 15, 2024This vulnerability in MySQL Server's Information Schema component allows authenticated high-privileged attackers to cause a denial of service by crash...
Oct 15, 2024This vulnerability in MySQL Server's InnoDB component allows authenticated high-privilege attackers to cause a denial of service by crashing or hangin...
Oct 15, 2024Why Monitor Oracle Security Vulnerabilities?
Real-time CVE tracking: Our automated system monitors 679+ known vulnerabilities affecting Oracle products and software packages. Stay ahead of emerging threats with instant email notifications when new security issues are discovered.
Automated security monitoring: Unlike manual CVE checking, FixTheCVE automatically scans your servers and detects vulnerable Oracle packages in under 60 seconds. No agents required - completely agentless scanning that works across Oracle deployments.
Free vulnerability database: Access detailed information about every Oracle CVE including CVSS scores, severity ratings, affected versions, and actionable patch guidance. Filter by critical, high, medium, or low severity to prioritize your security remediation efforts.
🚀 Get Started in 60 Seconds
- Register free account & add your servers
- Run one-time scan or schedule automatic monitoring (every 1-24 hours)
- Receive instant alerts when new Oracle CVEs affect your systems
- Access dashboard with severity breakdown & fix instructions
