Oracle
Security Scorecard
Score
34F
Total CVEs
118
Patch Rate
48%
56 patched
Avg Response
10317d
days to patch
Critical Gaps
4
exploitable, no detection
Severity Breakdown
Critical2
High31
Medium73
Low2
Patch Status
Patched56 (47%)
Partial/Workaround0 (0%)
Unpatched62 (53%)
CVEs (118)
| CVE ID | Title | Severity | Score | Days | Patch |
|---|---|---|---|---|---|
| CVE-2026-21962 | Oracle HTTP Server and Oracle Weblogic Server Proxy Plug-in Vulnerability | Critical | 10.0 | - | Patched |
| CVE-2026-21963 | Oracle VM VirtualBox Privilege Escalation | Medium | 6.0 | - | Patched |
| CVE-2026-21964 | MySQL Server Thread Pooling Vulnerability | Medium | 4.9 | - | Patched |
| CVE-2026-21966 | Oracle Hospitality OPERA 5 Property Services Remote Code Execution | Medium | 6.1 | - | Patched |
| CVE-2026-21968 | MySQL Server Denial of Service Vulnerability | Medium | 6.5 | - | Patched |
| CVE-2026-21969 | Oracle Agile Product Lifecycle Management for Process Vulnerability | Critical | 9.8 | - | Patched |
| CVE-2026-21970 | Oracle Life Sciences Central Designer RCE | Medium | 6.5 | - | Patched |
| CVE-2026-21971 | Oracle PeopleSoft Enterprise SCM Purchasing Vulnerability | Medium | 5.4 | - | Patched |
| CVE-2026-21972 | Oracle Configurator Remote Code Execution | Medium | 5.3 | - | Patched |
| CVE-2026-21973 | FLEXCUBE Investor Servicing Remote Code Execution | High | 8.1 | - | Patched |