CVE Vulnerability Catalog

Translated CVE descriptions from NVD NIST — in English

CISA KEV catalog updated: (v2026.07.01)

CVE-2026-46814
Critical

Vulnerability in the Oracle WebCenter Portal product of Oracle Fusion Middleware, affecting the Security Framework component. Easily exploitable by a low privileged attacker with network access via HTTP, potentially leading to takeover of Oracle WebCenter Portal.

CVE-2026-46813
Critical

Vulnerability in the Oracle WebCenter Content product of Oracle Fusion Middleware allows an unauthenticated attacker with network access via HTTP to take over Oracle WebCenter Content. Affects versions 12.2.1.4.0 and 14.1.2.0.0.

CVE-2026-46809
Critical

A vulnerability in the Oracle WebCenter Sites product of Oracle Fusion Middleware allows unauthenticated attackers with network access via HTTP to compromise the system. Attackers can gain unauthorized access to critical data and have the ability to create, delete, or modify it.

CVE-2026-46807
Critical

Vulnerability in the Identity Manager product of Oracle Fusion Middleware (component: OIM Legacy UI) allows an unauthenticated attacker with network access to compromise Identity Manager. Supported versions 12.2.1.4.0 and 14.1.2.1.0 are affected by this easily exploitable vulnerability.

CVE-2026-46805
Critical

Vulnerability in the Oracle WebCenter Content product of Oracle Fusion Middleware (component: Content Server) allows an unauthenticated attacker with network access via HTTP to compromise Oracle WebCenter Content. Successful attacks require human interaction and may significantly impact additional products.

CVE-2026-46803
Critical

Vulnerability in the Oracle WebCenter Portal product of Oracle Fusion Middleware allows an unauthenticated attacker with network access via HTTP to compromise the portal. Affected versions are 12.2.1.4.0 and 14.1.2.0.0.

CVE-2026-46802
Critical

Vulnerability in the Oracle WebCenter Portal product of Oracle Fusion Middleware, affecting the Security Framework component. It allows an easily exploitable attack by a low privileged attacker with network access via HTTP, potentially leading to the takeover of Oracle WebCenter Portal.

CVE-2026-46801
Critical

Vulnerability in the Oracle WebCenter Sites product of Oracle Fusion Middleware allows an unauthenticated attacker with network access via HTTP to compromise Oracle WebCenter Sites. Affected versions are 12.2.1.4.0 and 14.1.2.0.0.

CVE-2026-46800
Critical

Vulnerability in the Oracle WebCenter Sites product of Oracle Fusion Middleware allows an unauthenticated attacker with network access via HTTP to compromise Oracle WebCenter Sites. Affected versions are 12.2.1.4.0 and 14.1.2.0.0.

CVE-2026-46799
Critical

Vulnerability in the Oracle WebCenter Sites product of Oracle Fusion Middleware allows an unauthenticated attacker with network access via HTTP to compromise Oracle WebCenter Sites. Affected versions are 12.2.1.4.0 and 14.1.2.0.0.

CVE-2026-46798
Critical

Vulnerability in the Oracle WebCenter Sites product of Oracle Fusion Middleware allows an unauthenticated attacker with network access via HTTP to compromise Oracle WebCenter Sites. Affected versions are 12.2.1.4.0 and 14.1.2.0.0.

CVE-2026-46797
Critical

Vulnerability in the Oracle WebCenter Sites product of Oracle Fusion Middleware allows an unauthenticated attacker with network access via HTTP to compromise Oracle WebCenter Sites. It affects versions 12.2.1.4.0 and 14.1.2.0.0.

CVE-2026-46795
Critical

Vulnerability in the Oracle WebCenter Content product of Oracle Fusion Middleware (component: Content Server) allows easy exploitation by an unauthenticated attacker with network access via HTTP. Successful attacks can lead to unauthorized creation, deletion, or modification of critical data.

CVE-2026-46794
Critical

Vulnerability in the Identity Manager Connector product of Oracle Fusion Middleware (component: Generic Unix Connector) allows a low privileged attacker with network access via SSH to compromise Identity Manager Connector. Attacks may significantly impact additional products.

CVE-2026-46793
Critical

Vulnerability in the Identity Manager Connector product of Oracle Fusion Middleware allows a low privileged attacker with network access via HTTP to compromise the Identity Manager Connector. Attacks may significantly impact additional products.

CVE-2026-46792
Critical

Vulnerability in the Identity Manager Connector product of Oracle Fusion Middleware (component: Generic Unix Connector) allows low privileged attackers with network access via HTTP to compromise Identity Manager Connector. Attacks may significantly impact additional products.

CVE-2026-46789
Critical

Vulnerability in the Oracle WebCenter Content product of Oracle Fusion Middleware (component: Content Server) allows easy exploitation by an unauthenticated attacker with network access via HTTP. Successful attacks can lead to takeover of Oracle WebCenter Content.

CVE-2026-46786
Critical

Vulnerability in the Oracle WebCenter Content product of Oracle Fusion Middleware (component: Content Server) allows easy exploitation by an unauthenticated attacker with network access via HTTP. Successful attacks can lead to takeover of Oracle WebCenter Content.

CVE-2026-46785
Critical

Vulnerability in the Oracle WebCenter Content product of Oracle Fusion Middleware (component: Content Server) allows easy exploitation by an unauthenticated attacker with network access via HTTP. Successful attacks can lead to unauthorized creation, deletion, or modification of critical data.

CVE-2026-46784
Critical

Vulnerability in the WebCenter Content: Imaging product of Oracle Fusion Middleware allows an unauthenticated attacker with network access via HTTP to compromise the system. The attacker can gain unauthorized access to critical data and has the ability to create, delete, or modify data.

PreviousPage 33 of 556Next

Vulnerability data from NVD (NIST) · CISA KEV · EPSS