CVE Vulnerability Catalog
Translated CVE descriptions from NVD NIST — in English
CISA KEV catalog updated: (v2026.07.01)
Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards, affecting the Enterprise Infrastructure Security component. It allows an unauthenticated attacker with network access via JDENET to compromise JD Edwards EnterpriseOne Tools.
A vulnerability in the Oracle Enterprise Manager Base Platform product (Deployment Library) allows a high privileged attacker with network access via HTTPS to compromise the platform. Affected versions are 13.5 and 24.1.
Vulnerability in the Oracle Enterprise Manager Base Platform product allows a high privileged attacker with network access via HTTPS to compromise the system. Attacks may significantly impact additional products, leading to unauthorized access to critical data and the ability to cause system crashes.
Vulnerability in the MySQL NDB Cluster product of Oracle MySQL allows a low privileged attacker with network access via HTTP to compromise the MySQL NDB Cluster. Attacks may significantly impact additional products, changing the scope of the threat.
Vulnerability in the MySQL Router product of Oracle MySQL allows an unauthenticated attacker with network access via HTTP to compromise MySQL Router. Affected versions are 9.0.0-9.7.0.
Vulnerability in the Oracle Agile PLM product that allows an unauthenticated attacker with network access to remotely take over the system. Version 9.3.6 is particularly vulnerable.
A vulnerability in the APM - Application Performance Management product of Oracle Enterprise Manager (component: JADM, JVM Diagnostics) allows easy exploitation by an unauthenticated attacker with network access via HTTP. It can lead to unauthorized creation, deletion, or modification of critical data and complete denial of service of APM.
Vulnerability in the Oracle Enterprise Manager Base Platform product allows an unauthenticated attacker with network access via HTTP to take over the platform. Affected versions are 13.5 and 24.1.
Vulnerability in the Oracle Enterprise Manager Base Platform product, concerning the Metadata Plugin, affects versions 13.5 and 24.1. It allows easy exploitation by an unauthenticated attacker with network access via HTTP, potentially leading to the takeover of the Oracle Enterprise Manager Base Platform.
Vulnerability in the Oracle Enterprise Manager Base Platform product, affecting the Metadata Plugin component, concerns versions 13.5 and 24.1. It allows an easily exploitable attack by a low privileged attacker with network access via HTTPS, potentially leading to the takeover of the Oracle Enterprise Manager Base Platform.
A vulnerability in the Oracle Enterprise Manager Base Platform product allows a low privileged attacker with network access via HTTP to compromise the platform. Affects versions 13.5 and 24.1, and attacks may significantly impact additional products.
Vulnerability in the Oracle Enterprise Manager Base Platform product, affecting the Metadata Plugin component, concerns versions 13.5 and 24.1. It allows easy exploitation by an unauthenticated attacker with network access via HTTP, potentially leading to takeover of the platform.
Vulnerability in the Oracle Enterprise Manager Base Platform product, affecting versions 13.5 and 24.1. Easily exploitable vulnerability allows a low privileged attacker to remotely take control of the Oracle Enterprise Manager Base Platform.
Vulnerability in the MySQL Shell product of Oracle MySQL (component: Shell for VS Code) allows a low privileged attacker with network access via HTTP to compromise MySQL Shell. Attacks may significantly impact additional products.
Vulnerability in the Oracle WebCenter Portal product of Oracle Fusion Middleware, concerning runtime tools. It allows easy exploitation by a low-privileged attacker with network access via HTTPS, potentially leading to the takeover of Oracle WebCenter Portal.
Vulnerability in the Oracle WebCenter Portal product of Oracle Fusion Middleware, affecting the Security Framework component. It allows an unauthenticated attacker with network access via HTTP to compromise Oracle WebCenter Portal.
Vulnerability in the Oracle WebCenter Portal product of Oracle Fusion Middleware (component: Security Framework) allows an unauthenticated attacker with network access via HTTPS to compromise Oracle WebCenter Portal. Affects versions 12.2.1.4.0 and 14.1.2.0.0.
Vulnerability in the Oracle WebCenter Portal product of Oracle Fusion Middleware allows a low privileged attacker with network access via HTTPS to compromise the portal. Attacks may also significantly impact additional products.
Vulnerability in the Oracle WebCenter Portal product of Oracle Fusion Middleware, affecting the Security Framework component. It allows a low privileged attacker with network access via HTTPS to compromise Oracle WebCenter Portal.
Vulnerability in the Oracle Enterprise Manager Base Platform product, affecting the Discovery Framework component, concerns versions 13.5 and 24.1. Easily exploitable vulnerability allows a low privileged attacker with network access via HTTPS to compromise Oracle Enterprise Manager Base Platform.

