Oracle Security Vulnerabilities (CVEs)
Track 682 security vulnerabilities affecting Oracle products and software. Get instant email alerts when new CVEs are discovered, automated security monitoring, and patch guidance.
This vulnerability in Oracle Enterprise Manager Fusion Middleware Control allows authenticated attackers with low privileges to gain unauthorized acce...
Oct 15, 2024This vulnerability allows high-privileged attackers with network access to cause a denial of service (DoS) by crashing or hanging MySQL Server. It aff...
Oct 15, 2024This vulnerability in Oracle BI Publisher allows authenticated attackers with low privileges to access, modify, or delete sensitive data, and cause pa...
Oct 15, 2024This critical vulnerability in Oracle Hospitality OPERA 5 allows unauthenticated attackers with network access via HTTP to potentially compromise the ...
Oct 15, 2024This vulnerability in MySQL Server's InnoDB component allows authenticated high-privileged attackers to cause denial of service by crashing or hanging...
Jul 16, 2024This vulnerability in MySQL Server's InnoDB component allows high-privileged attackers with network access to cause a denial of service by crashing or...
Jul 16, 2024This critical vulnerability in Oracle WebLogic Server allows unauthenticated attackers with network access via T3 or IIOP protocols to completely comp...
Jul 16, 2024This vulnerability in Oracle WebLogic Server allows unauthenticated attackers with network access via T3 or IIOP protocols to access sensitive data. I...
Jul 16, 2024This vulnerability in Oracle WebLogic Server allows unauthenticated attackers with network access via HTTP to compromise the server's integrity. Attac...
Jul 16, 2024This vulnerability in MySQL Server's Optimizer component allows authenticated attackers with network access to cause a denial of service by crashing o...
Jul 16, 2024This vulnerability in Oracle Trading Community's Party Search UI allows authenticated attackers with low privileges to perform unauthorized data manip...
Jul 16, 2024This vulnerability in Oracle Marketing allows unauthenticated attackers with network access via HTTP to compromise the system. It affects Oracle E-Bus...
Jul 16, 2024This vulnerability in MySQL Server's Optimizer component allows low-privileged attackers with network access to cause a denial of service (DoS) by cra...
Jul 16, 2024This vulnerability in MySQL Server's optimizer component allows high-privileged attackers with network access to cause denial of service (server hangs...
Jul 16, 2024This vulnerability in MySQL Server's Pluggable Authentication component allows high-privileged attackers with network access to cause a denial of serv...
Jul 16, 2024This vulnerability in MySQL Server's InnoDB component allows authenticated high-privileged attackers to cause a denial of service by crashing or hangi...
Jul 16, 2024This vulnerability in MySQL Server's InnoDB component allows high-privileged attackers with network access to cause a denial of service by crashing or...
Jul 16, 2024This vulnerability in Oracle VM VirtualBox allows a low-privileged attacker with local access to a Linux host to cause a denial of service (DoS) by cr...
Jul 16, 2024This vulnerability in Oracle Process Manufacturing Financials allows authenticated attackers with low privileges to access and modify critical data vi...
Jul 16, 2024This vulnerability allows authenticated attackers with low privileges to read sensitive HR data from Oracle PeopleSoft Enterprise HCM Human Resources ...
Jul 16, 2024This vulnerability in Oracle Trade Management allows authenticated attackers with low privileges to perform unauthorized data manipulation and access ...
Jul 16, 2024This vulnerability in Oracle Applications Framework allows high-privileged attackers with network access via HTTP to compromise the framework when the...
Jul 16, 2024This vulnerability in Oracle Enterprise Asset Management allows authenticated attackers with low privileges to manipulate critical data or access sens...
Jul 16, 2024This vulnerability in Oracle VM VirtualBox allows a high-privileged attacker with local access to the host system to completely compromise the Virtual...
Jul 16, 2024This vulnerability allows unauthenticated attackers with network access via HTTP to read sensitive data from Oracle iStore, part of Oracle E-Business ...
Jul 16, 2024This vulnerability in Oracle Java SE's 2D component allows unauthenticated attackers with network access to potentially modify or read some accessible...
Jul 16, 2024An unauthenticated attacker can exploit this vulnerability in Oracle Retail Xstore Office via HTTP to access sensitive data. This affects versions 19....
Jul 16, 2024This vulnerability in Oracle Business Intelligence Enterprise Edition allows authenticated attackers with low privileges to manipulate or view sensiti...
Jul 16, 2024This vulnerability in Oracle Purchasing allows authenticated attackers with low privileges to perform unauthorized data manipulation and read access v...
Jul 16, 2024This vulnerability in Oracle MySQL Server allows low-privileged attackers with network access to cause a partial denial of service (DoS) by disrupting...
Jul 16, 2024This vulnerability in MySQL Server allows high-privileged attackers with network access to cause a denial of service (DoS) by crashing or hanging the ...
Jul 16, 2024This vulnerability in MySQL Server allows high-privileged attackers with network access to cause a denial of service by crashing or hanging the server...
Jul 16, 2024This vulnerability in MySQL Server's InnoDB component allows authenticated high-privilege attackers to cause denial of service by crashing or hanging ...
Jul 16, 2024This vulnerability in MySQL Server's Full-Text Search (FTS) component allows high-privileged attackers with network access to cause denial of service ...
Jul 16, 2024This vulnerability in Oracle VM VirtualBox allows a low-privileged attacker with local access to the host system to compromise the VirtualBox software...
Apr 16, 2024This vulnerability in Oracle VM VirtualBox allows a low-privileged attacker with local access to a Linux host system to completely compromise the Virt...
Apr 16, 2024This vulnerability in Oracle VM VirtualBox allows a low-privileged local attacker to gain complete control over the virtualization software when a use...
Apr 16, 2024This vulnerability in Oracle VM VirtualBox allows a low-privileged attacker with local access to the host system to compromise VirtualBox, potentially...
Apr 16, 2024This vulnerability in Oracle VM VirtualBox allows a low-privileged attacker with local access to a Linux host to completely compromise the VirtualBox ...
Apr 16, 2024This vulnerability in Oracle Primavera P6 Enterprise Project Portfolio Management allows unauthenticated attackers with network access via HTTP to acc...
Apr 16, 2024This vulnerability in Oracle MySQL Connector/Python allows unauthenticated attackers with network access to cause a denial of service by crashing or h...
Apr 16, 2024This vulnerability in Oracle Agile Product Lifecycle Management for Process allows authenticated attackers with low privileges to perform unauthorized...
Apr 16, 2024This vulnerability in Oracle Production Scheduling's Import Utility allows unauthenticated attackers with network access via HTTP to compromise data i...
Apr 16, 2024This vulnerability in Oracle Marketing allows unauthenticated attackers with network access via HTTP to access sensitive data. It affects Oracle E-Bus...
Apr 16, 2024This critical vulnerability in Oracle BI Publisher allows unauthenticated attackers with network access via HTTP to completely compromise the system. ...
Apr 16, 2024This vulnerability in Oracle Trade Management allows unauthenticated attackers to access sensitive data via HTTP. It affects Oracle E-Business Suite v...
Apr 16, 2024This vulnerability allows unauthenticated attackers with network access via HTTP to compromise Oracle Trade Management in Oracle E-Business Suite. Suc...
Apr 16, 2024This vulnerability allows unauthenticated attackers with network access via HTTP to compromise Oracle Trade Management, potentially gaining unauthoriz...
Apr 16, 2024This vulnerability in Oracle Enterprise Manager Base Platform allows a low-privileged attacker with local access to the host to completely compromise ...
Apr 16, 2024This vulnerability allows high-privileged attackers with network access via HTTP to compromise Oracle Workflow in Oracle E-Business Suite, potentially...
Apr 16, 2024Why Monitor Oracle Security Vulnerabilities?
Real-time CVE tracking: Our automated system monitors 682+ known vulnerabilities affecting Oracle products and software packages. Stay ahead of emerging threats with instant email notifications when new security issues are discovered.
Automated security monitoring: Unlike manual CVE checking, FixTheCVE automatically scans your servers and detects vulnerable Oracle packages in under 60 seconds. No agents required - completely agentless scanning that works across Oracle deployments.
Free vulnerability database: Access detailed information about every Oracle CVE including CVSS scores, severity ratings, affected versions, and actionable patch guidance. Filter by critical, high, medium, or low severity to prioritize your security remediation efforts.
🚀 Get Started in 60 Seconds
- Register free account & add your servers
- Run one-time scan or schedule automatic monitoring (every 1-24 hours)
- Receive instant alerts when new Oracle CVEs affect your systems
- Access dashboard with severity breakdown & fix instructions
