CVE Vulnerability Catalog

Translated CVE descriptions from NVD NIST — in English

CISA KEV catalog updated: (v2026.07.01)

CVE-2026-46783
Critical

Vulnerability in the WebCenter Content: Imaging product of Oracle, affecting versions 12.2.1.4.0 and 14.1.2.0.0. It allows easy exploitation by an unauthenticated attacker with network access via HTTP, potentially leading to takeover of WebCenter Content: Imaging.

CVE-2026-46782
Critical

Vulnerability in the Oracle WebCenter Enterprise Capture product of Oracle Fusion Middleware allows a low privileged attacker with network access via HTTP to take control of the system. Affected versions are 12.2.1.4.0 and 14.1.2.0.0.

CVE-2026-46781
Critical

Vulnerability in the Oracle WebCenter Enterprise Capture product of Oracle Fusion Middleware allows an unauthenticated attacker with network access via RMI to compromise the system. Affected versions are 12.2.1.4.0 and 14.1.2.0.0.

CVE-2026-46779
Critical

A vulnerability in the Oracle WebCenter Enterprise Capture product of Oracle Fusion Middleware allows a low privileged attacker with network access via T3 to take control of the system. Attacks may significantly impact additional products, increasing the scope of the threat.

CVE-2026-46778
Critical

Vulnerability in Oracle WebCenter Enterprise Capture (component: Client Bundle) versions 12.2.1.4.0 and 14.1.2.0.0. An unauthenticated attacker with network access via RMI can easily exploit this flaw, leading to full system takeover. The attack may impact additional products (scope change), with a CVSS score of 10.0.

CVE-2026-46777
Critical

A vulnerability in the Oracle WebCenter Content product of Oracle Fusion Middleware allows an unauthenticated attacker with network access via HTTP to compromise the system. Successful attacks can lead to unauthorized creation, deletion, or modification of critical data.

CVE-2026-46774
Critical

Vulnerability in the Oracle Unified Directory product of Oracle Fusion Middleware allows an unauthenticated attacker with network access to compromise Oracle Unified Directory. Affected versions are 12.2.1.4.0 and 14.1.2.1.0.

CVE-2026-46773
Critical

Vulnerability in the Oracle Unified Directory product of Oracle Fusion Middleware allows an unauthenticated attacker with network access via LDAP to compromise Oracle Unified Directory. Affects versions 12.2.1.4.0 and 14.1.2.1.0.

CVE-2026-46767
Critical

Vulnerability in the Oracle WebCenter Portal product of Oracle Fusion Middleware (component: Composer) allows a low privileged attacker with network access via HTTP to compromise Oracle WebCenter Portal. Attacks may significantly impact additional products.

CVE-2026-46766
Critical

Vulnerability in the Oracle WebCenter Content product of Oracle Fusion Middleware allows an unauthenticated attacker with network access via HTTP to compromise Oracle WebCenter Content. Affected versions are 12.2.1.4.0 and 14.1.2.0.0.

CVE-2026-46765
Critical

Vulnerability in the Oracle WebCenter Portal product of Oracle Fusion Middleware (component: Composer) allows a low privileged attacker with network access via HTTP to compromise Oracle WebCenter Portal. Attacks may significantly impact additional products.

CVE-2026-35323
Critical

Vulnerability in the Oracle WebCenter Content product of Oracle Fusion Middleware allows a low privileged attacker with network access via HTTP to compromise Oracle WebCenter Content. Attacks may significantly impact additional products.

CVE-2026-35321
Critical

Vulnerability in the Oracle WebCenter Content product of Oracle Fusion Middleware allows a low privileged attacker with network access via HTTP to compromise Oracle WebCenter Content. Affected versions are 12.2.1.4.0 and 14.1.2.0.0.

CVE-2026-35320
Critical

A vulnerability in the Oracle WebCenter Content product of Oracle Fusion Middleware allows an unauthenticated attacker with network access via HTTP to compromise Oracle WebCenter Content. This difficult-to-exploit vulnerability may significantly impact additional products.

CVE-2026-35319
Critical

Vulnerability in the Oracle WebCenter Content product of Oracle Fusion Middleware allows an unauthenticated attacker with network access via HTTP to compromise Oracle WebCenter Content. Affected versions are 12.2.1.4.0 and 14.1.2.0.0.

CVE-2026-35316
Critical

Vulnerability in the Oracle WebCenter Content product of Oracle Fusion Middleware allows a low privileged attacker with network access via HTTP to compromise Oracle WebCenter Content. Affected versions are 12.2.1.4.0 and 14.1.2.0.0.

CVE-2026-35313
Critical

Vulnerability in the Oracle Access Manager product of Oracle Fusion Middleware, affecting the Authentication Engine. Easily exploitable by a low privileged attacker with network access via HTTP, potentially leading to the takeover of Oracle Access Manager.

CVE-2026-35312
Critical

Vulnerability in the Oracle Virtual Directory product of Oracle Fusion Middleware allows an unauthenticated attacker with network access via LDAP to compromise Oracle Virtual Directory. Affects versions 12.2.1.4.0 and 14.1.2.0.0.

CVE-2026-35310
Critical

Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware allows an unauthenticated attacker with network access via HTTP to compromise Oracle Coherence. It affects versions 12.2.1.4.0, 14.1.1.0.0, 14.1.2.0.0, and 15.1.1.0.0.

CVE-2026-35309
Critical

Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware allows an unauthenticated attacker with network access via HTTP to compromise Oracle Coherence. Affected versions are 12.2.1.4.0, 14.1.1.0.0, 14.1.2.0.0, and 15.1.1.0.0.

PreviousPage 34 of 556Next

Vulnerability data from NVD (NIST) · CISA KEV · EPSS