Applications Dba

1 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest

CVE-2026-21960 MEDIUM PATCH This Month

Oracle Applications DBA versions 12.2.3-12.2.15 contain an authorization flaw in the Java utilities component that allows high-privileged attackers to gain unauthorized read and write access to sensitive data via HTTP. An authenticated attacker with administrative credentials can exploit this vulnerability to create, modify, or delete critical application data without restriction. A patch is available and should be prioritized for deployment in affected Oracle E-Business Suite environments.

Oracle Java Applications Dba

NVD

CVSS 3.1

6.5

EPSS

0.1%

CVE-2026-21960

EPSS 0% CVSS 6.5

MEDIUM PATCH This Month

Oracle Applications DBA versions 12.2.3-12.2.15 contain an authorization flaw in the Java utilities component that allows high-privileged attackers to gain unauthorized read and write access to sensitive data via HTTP. An authenticated attacker with administrative credentials can exploit this vulnerability to create, modify, or delete critical application data without restriction. A patch is available and should be prioritized for deployment in affected Oracle E-Business Suite environments.

Oracle Java Applications Dba

NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy