Home / Vendors / Oracle
Vendor Profile

Oracle Vulnerabilities

Known Exploited Vulnerabilities catalog entries for Oracle products.

42
CVE Total
26
Critical
11
Ransomware
CVE-2025-61757 CRITICAL

Oracle Fusion Middleware Missing Authentication for Critical Function Vulnerability

Oracle Fusion Middleware
CVSS 9.8
Added Nov 21
CVE-2025-61884 HIGH Ransomware

Oracle E-Business Suite Server-Side Request Forgery (SSRF) Vulnerability

Oracle E-Business Suite
CVSS 7.5
Added Oct 20
CVE-2025-61882 CRITICAL Ransomware

Oracle E-Business Suite Unspecified Vulnerability

Oracle E-Business Suite
CVSS 9.8
Added Oct 06
CVE-2024-20953 HIGH

Oracle Agile Product Lifecycle Management (PLM) Deserialization Vulnerability

Oracle Agile Product Lifecycle Management (PLM)
CVSS 8.8
Added Feb 24
CVE-2020-2883 CRITICAL

Oracle WebLogic Server Unspecified Vulnerability

Oracle WebLogic Server
CVSS 9.8
Added Jan 07
CVE-2024-21287 HIGH

Oracle Agile Product Lifecycle Management (PLM) Incorrect Authorization Vulnerability

Oracle Agile Product Lifecycle Management (PLM)
CVSS 7.5
Added Nov 21
CVE-2020-14644 CRITICAL

Oracle WebLogic Server Remote Code Execution Vulnerability

Oracle WebLogic Server
CVSS 9.8
Added Sep 18
CVE-2022-21445 CRITICAL

Oracle ADF Faces Deserialization of Untrusted Data Vulnerability

Oracle ADF Faces
CVSS 9.8
Added Sep 18
CVE-2017-3506 HIGH

Oracle WebLogic Server OS Command Injection Vulnerability

Oracle WebLogic Server
CVSS 7.4
Added Jun 03
CVE-2020-2551 CRITICAL

Oracle Fusion Middleware Unspecified Vulnerability

Oracle Fusion Middleware
CVSS 9.8
Added Nov 16
CVE-2016-3427 CRITICAL

Oracle Java SE and JRockit Unspecified Vulnerability

Oracle Java SE and JRockit
CVSS 9.8
Added May 12
CVE-2023-21839 HIGH

Oracle WebLogic Server Unspecified Vulnerability

Oracle WebLogic Server
CVSS 7.5
Added May 01
CVE-2022-21587 CRITICAL Ransomware

Oracle E-Business Suite Unspecified Vulnerability

Oracle E-Business Suite
CVSS 9.8
Added Feb 02
CVE-2021-35587 CRITICAL

Oracle Fusion Middleware Unspecified Vulnerability

Oracle Fusion Middleware
CVSS 9.8
Added Nov 28
CVE-2018-2628 CRITICAL

Oracle WebLogic Server Unspecified Vulnerability

Oracle WebLogic Server
CVSS 9.8
Added Sep 08
CVE-2010-0840 CRITICAL

Oracle JRE Unspecified Vulnerability

Oracle Java Runtime Environment (JRE)
CVSS 9.8
Added May 25
CVE-2012-1710 CRITICAL Ransomware

Oracle Fusion Middleware Unspecified Vulnerability

Oracle Fusion Middleware
CVSS 9.8
Added May 25
CVE-2013-0422 CRITICAL

Oracle JRE Remote Code Execution Vulnerability

Oracle Java Runtime Environment (JRE)
CVSS 9.8
Added May 25
CVE-2013-0431 MEDIUM Ransomware

Oracle JRE Sandbox Bypass Vulnerability

Oracle Java Runtime Environment (JRE)
CVSS 5.3
Added May 25
CVE-2013-2423 LOW

Oracle JRE Unspecified Vulnerability

Oracle Java Runtime Environment (JRE)
CVSS 3.7
Added May 25
CVE-2019-3010 HIGH

Oracle Solaris Privilege Escalation Vulnerability

Oracle Solaris
CVSS 8.8
Added May 25
CVE-2012-0518 MEDIUM

Oracle Fusion Middleware Unspecified Vulnerability

Oracle Fusion Middleware
CVSS 4.7
Added Mar 28
CVE-2012-5076 CRITICAL

Oracle Java SE Sandbox Bypass Vulnerability

Oracle Java SE
CVSS 9.8
Added Mar 28
CVE-2013-2465 CRITICAL Ransomware

Oracle Java SE Unspecified Vulnerability

Oracle Java SE
CVSS 9.8
Added Mar 28
CVE-2019-2616 HIGH

Oracle BI Publisher Unauthorized Access Vulnerability

Oracle BI Publisher (Formerly XML Publisher)
CVSS 7.2
Added Mar 25
CVE-2008-3431 HIGH

Oracle VirtualBox Insufficient Input Validation Vulnerability

Oracle VirtualBox
CVSS 8.8
Added Mar 03
CVE-2011-3544 CRITICAL

Oracle Java SE Runtime Environment (JRE) Arbitrary Code Execution Vulnerability

Oracle Java SE JDK and JRE
CVSS 9.8
Added Mar 03
CVE-2012-0507 CRITICAL Ransomware

Oracle Java SE Runtime Environment (JRE) Arbitrary Code Execution Vulnerability

Oracle Java SE
CVSS 9.8
Added Mar 03
CVE-2012-1723 CRITICAL Ransomware

Oracle Java SE Runtime Environment (JRE) Arbitrary Code Execution Vulnerability

Oracle Java SE
CVSS 9.8
Added Mar 03
CVE-2012-4681 CRITICAL Ransomware

Oracle Java SE Runtime Environment (JRE) Arbitrary Code Execution Vulnerability

Oracle Java SE
CVSS 9.8
Added Mar 03
CVE-2015-2590 CRITICAL

Oracle Java SE and Java SE Embedded Remote Code Execution Vulnerability

Oracle Java SE
CVSS 9.8
Added Mar 03
CVE-2015-4902 MEDIUM

Oracle Java SE Integrity Check Vulnerability

Oracle Java SE
CVSS 5.3
Added Mar 03
CVE-2017-10271 HIGH Ransomware

Oracle Corporation WebLogic Server Remote Code Execution Vulnerability

Oracle WebLogic Server
CVSS 7.5
Added Feb 10
CVE-2020-14864 HIGH

Oracle Business Intelligence Enterprise Edition Path Transversal

Oracle Intelligence Enterprise Edition
CVSS 7.5
Added Jan 18
CVE-2019-2725 HIGH Ransomware

Oracle WebLogic Server, Injection

Oracle WebLogic Server
CVSS 7.5
Added Jan 10
CVE-2012-3152 CRITICAL

Oracle Fusion Middleware Unspecified Vulnerability

Oracle Fusion Middleware
CVSS 9.1
Added Nov 03
CVE-2015-4852 CRITICAL

Oracle WebLogic Server Deserialization of Untrusted Data Vulnerability

Oracle WebLogic Server
CVSS 9.8
Added Nov 03
CVE-2020-14750 CRITICAL

Oracle WebLogic Server Remote Code Execution Vulnerability

Oracle WebLogic Server
CVSS 9.8
Added Nov 03
CVE-2020-14871 CRITICAL

Oracle Solaris and Zettabyte File System (ZFS) Unspecified Vulnerability

Oracle Solaris and Zettabyte File System (ZFS)
CVSS 10
Added Nov 03
CVE-2020-14882 CRITICAL

Oracle WebLogic Server Remote Code Execution Vulnerability

Oracle WebLogic Server
CVSS 9.8
Added Nov 03
CVE-2020-14883 HIGH

Oracle WebLogic Server Unspecified Vulnerability

Oracle WebLogic Server
CVSS 7.2
Added Nov 03
CVE-2020-2555 CRITICAL

Oracle Multiple Products Remote Code Execution Vulnerability

Oracle Multiple Products
CVSS 9.8
Added Nov 03