Oracle product CVE coverage from NVD — MySQL, Java, WebLogic, and enterprise application stack vulnerabilities.
Vendor watch hub
The Oraclewatch hub is a vendor-specific view inside ITECS MSP Threat Radar. We pull the latest security advisories, incidents, and known-exploited CVEs directly from the official feeds below, score each one for MSP relevance, and surface what's most likely to need attention this week.
At a glance
Tracked
Active
Featured
Unique CVEs
Most recent entry
Nov 20, 2025, 6:00 PM
Feed refreshes daily · 5:15 a.m. Central
Sources·CISA KEV and NVD (product vendor coverage)
"Most recent entry" is the newest item the upstream feed has published — not our sync time.
Watch items
Showing the 20 most recent items, newest first. Each row links to the official advisory.
20 rows · sorted newest first
Operations viewOracle Fusion Middleware contains a missing authentication for critical function vulnerability, allowing unauthenticated remote attackers to take over Identity Manager.
Oracle E-Business Suite contains a server-side request forgery (SSRF) vulnerability in the Runtime component of Oracle Configurator. This vulnerability is remotely exploitable without authentication. Known ransomware use: Known.
Oracle E-Business Suite contains an unspecified vulnerability in the BI Publisher Integration component. The vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Concurrent Processing. Successful attacks can result in takeover of Oracle Concurrent Processing. Known ransomware use: Known.
Oracle Agile Product Lifecycle Management (PLM) contains a deserialization vulnerability that allows a low-privileged attacker with network access via HTTP to compromise the system.
Oracle WebLogic Server, a product within the Fusion Middleware suite, contains an unspecified vulnerability exploitable by an unauthenticated attacker with network access via IIOP or T3.
Oracle Agile Product Lifecycle Management (PLM) contains an incorrect authorization vulnerability in the Process Extension component of the Software Development Kit. Successful exploitation of this vulnerability may result in unauthenticated file disclosure.
Oracle WebLogic Server, a product within the Fusion Middleware suite, contains a deserialization vulnerability. Unauthenticated attackers with network access via T3 or IIOP can exploit this vulnerability to achieve remote code execution.
Oracle ADF Faces library, included with Oracle JDeveloper Distribution, contains a deserialization of untrusted data vulnerability leading to unauthenticated remote code execution.
Oracle Fusion Middleware contains an unspecified vulnerability in the WLS Core Components that allows an unauthenticated attacker with network access via IIOP to compromise the WebLogic Server.
Oracle WebLogic Server contains an unspecified vulnerability that allows an unauthenticated attacker with network access via T3, IIOP, to compromise Oracle WebLogic Server.
Oracle E-Business Suite contains an unspecified vulnerability that allows an unauthenticated attacker with network access via HTTP to compromise Oracle Web Applications Desktop Integrator. Known ransomware use: Known.
Oracle Fusion Middleware Access Manager allows an unauthenticated attacker with network access via HTTP to takeover the Access Manager product.
The Restaurant Menu – Food Ordering System – Table Reservation plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.3.1. This is due to missing or incorrect nonce validation on several functions called via AJAX actions such as forms_action, set_option, & chosen_options to name a few . This makes it possible for unauthenticated attackers to perform a variety of administrative actions like modifying forms, via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.
Oracle WebLogic Server contains an unspecified vulnerability which can allow an unauthenticated attacker with T3 network access to compromise the server.
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle allows remote attackers to bypass the Java security sandbox. Known ransomware use: Known.
Unspecified vulnerability in hotspot for Java Runtime Environment (JRE) allows remote attackers to affect integrity.
Oracle Solaris component: XScreenSaver contains an unspecified vulnerability that allows for privilege escalation.
Unspecified vulnerability in the Oracle Application Server Single Sign-On component in Oracle Fusion Middleware allows remote attackers to affect integrity via Unknown vectors
Oracle BI Publisher, formerly XML Publisher, contains an unspecified vulnerability that allows for various unauthorized actions. Open-source reporting attributes this vulnerability to allowing for authentication bypass.
An incorrect type vulnerability exists in the Concurrency component of Oracle's Java Runtime Environment allows an attacker to remotely execute arbitrary code. Known ransomware use: Known.
| Alert | Exposure | Status | Published | Source |
|---|---|---|---|---|
Oracle Fusion Middleware Missing Authentication for Critical Function VulnerabilityOracle Fusion Middleware contains a missing authentication for critical function vulnerability, allowing unauthenticated remote attackers to take over Identity Manager. Fusion Middleware | criticalCVE-2025-61757 Critical | active | Nov 20, 2025, 6:00 PM | CISA KEVOpen source |
Oracle E-Business Suite Server-Side Request Forgery (SSRF) VulnerabilityOracle E-Business Suite contains a server-side request forgery (SSRF) vulnerability in the Runtime component of Oracle Configurator. This vulnerability is remotely exploitable without authentication. Known ransomware use: Known. E-Business Suite | criticalCVE-2025-61884 Critical | active | Oct 19, 2025, 7:00 PM | CISA KEVOpen source |
Oracle E-Business Suite Unspecified VulnerabilityOracle E-Business Suite contains an unspecified vulnerability in the BI Publisher Integration component. The vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Concurrent Processing. Successful attacks can result in takeover of Oracle Concurrent Processing. Known ransomware use: Known. E-Business Suite | criticalCVE-2025-61882 Critical | active | Oct 5, 2025, 7:00 PM | CISA KEVOpen source |
Oracle Agile Product Lifecycle Management (PLM) Deserialization VulnerabilityOracle Agile Product Lifecycle Management (PLM) contains a deserialization vulnerability that allows a low-privileged attacker with network access via HTTP to compromise the system. Agile Product Lifecycle Management (PLM) | criticalCVE-2024-20953 Critical | active | Feb 23, 2025, 6:00 PM | CISA KEVOpen source |
Oracle WebLogic Server Unspecified VulnerabilityOracle WebLogic Server, a product within the Fusion Middleware suite, contains an unspecified vulnerability exploitable by an unauthenticated attacker with network access via IIOP or T3. WebLogic Server | criticalCVE-2020-2883 Critical | active | Jan 6, 2025, 6:00 PM | CISA KEVOpen source |
Oracle Agile Product Lifecycle Management (PLM) Incorrect Authorization VulnerabilityOracle Agile Product Lifecycle Management (PLM) contains an incorrect authorization vulnerability in the Process Extension component of the Software Development Kit. Successful exploitation of this vulnerability may result in unauthenticated file disclosure. Agile Product Lifecycle Management (PLM) | criticalCVE-2024-21287 Critical | active | Nov 20, 2024, 6:00 PM | CISA KEVOpen source |
Oracle WebLogic Server Remote Code Execution VulnerabilityOracle WebLogic Server, a product within the Fusion Middleware suite, contains a deserialization vulnerability. Unauthenticated attackers with network access via T3 or IIOP can exploit this vulnerability to achieve remote code execution. WebLogic Server | criticalCVE-2020-14644 Critical | active | Sep 17, 2024, 7:00 PM | CISA KEVOpen source |
Oracle ADF Faces Deserialization of Untrusted Data VulnerabilityOracle ADF Faces library, included with Oracle JDeveloper Distribution, contains a deserialization of untrusted data vulnerability leading to unauthenticated remote code execution. ADF Faces | criticalCVE-2022-21445 Critical | active | Sep 17, 2024, 7:00 PM | CISA KEVOpen source |
Oracle Fusion Middleware Unspecified VulnerabilityOracle Fusion Middleware contains an unspecified vulnerability in the WLS Core Components that allows an unauthenticated attacker with network access via IIOP to compromise the WebLogic Server. Fusion Middleware | criticalCVE-2020-2551 Critical | active | Nov 15, 2023, 6:00 PM | CISA KEVOpen source |
Oracle WebLogic Server Unspecified VulnerabilityOracle WebLogic Server contains an unspecified vulnerability that allows an unauthenticated attacker with network access via T3, IIOP, to compromise Oracle WebLogic Server. WebLogic Server | criticalCVE-2023-21839 Critical | active | Apr 30, 2023, 7:00 PM | CISA KEVOpen source |
Oracle E-Business Suite Unspecified VulnerabilityOracle E-Business Suite contains an unspecified vulnerability that allows an unauthenticated attacker with network access via HTTP to compromise Oracle Web Applications Desktop Integrator. Known ransomware use: Known. E-Business Suite | criticalCVE-2022-21587 Critical | active | Feb 1, 2023, 6:00 PM | CISA KEVOpen source |
Oracle Fusion Middleware Unspecified VulnerabilityOracle Fusion Middleware Access Manager allows an unauthenticated attacker with network access via HTTP to takeover the Access Manager product. Fusion Middleware | criticalCVE-2021-35587 Critical | active | Nov 27, 2022, 6:00 PM | CISA KEVOpen source |
restaurant menu - food ordering system - table reservation vulnerability (CVE-2022-3776)The Restaurant Menu – Food Ordering System – Table Reservation plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.3.1. This is due to missing or incorrect nonce validation on several functions called via AJAX actions such as forms_action, set_option, & chosen_options to name a few . This makes it possible for unauthenticated attackers to perform a variety of administrative actions like modifying forms, via a forged request granted they can trick a site administrator into performing an action such as clicking on a link. restaurant menu - food ordering system - table reservation | HIGHCVE-2022-3776 Watch | watch | Nov 3, 2022, 12:15 PM | NVDOpen source |
Oracle WebLogic Server Unspecified VulnerabilityOracle WebLogic Server contains an unspecified vulnerability which can allow an unauthenticated attacker with T3 network access to compromise the server. WebLogic Server | criticalCVE-2018-2628 Critical | active | Sep 7, 2022, 7:00 PM | CISA KEVOpen source |
Oracle JRE Sandbox Bypass VulnerabilityUnspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle allows remote attackers to bypass the Java security sandbox. Known ransomware use: Known. Java Runtime Environment (JRE) | criticalCVE-2013-0431 Critical | active | May 24, 2022, 7:00 PM | CISA KEVOpen source |
Oracle JRE Unspecified VulnerabilityUnspecified vulnerability in hotspot for Java Runtime Environment (JRE) allows remote attackers to affect integrity. Java Runtime Environment (JRE) | criticalCVE-2013-2423 Critical | active | May 24, 2022, 7:00 PM | CISA KEVOpen source |
Oracle Solaris Privilege Escalation VulnerabilityOracle Solaris component: XScreenSaver contains an unspecified vulnerability that allows for privilege escalation. Solaris | criticalCVE-2019-3010 Critical | active | May 24, 2022, 7:00 PM | CISA KEVOpen source |
Oracle Fusion Middleware Unspecified VulnerabilityUnspecified vulnerability in the Oracle Application Server Single Sign-On component in Oracle Fusion Middleware allows remote attackers to affect integrity via Unknown vectors Fusion Middleware | criticalCVE-2012-0518 Critical | active | Mar 27, 2022, 7:00 PM | CISA KEVOpen source |
Oracle BI Publisher Unauthorized Access VulnerabilityOracle BI Publisher, formerly XML Publisher, contains an unspecified vulnerability that allows for various unauthorized actions. Open-source reporting attributes this vulnerability to allowing for authentication bypass. BI Publisher (Formerly XML Publisher) | criticalCVE-2019-2616 Critical | active | Mar 24, 2022, 7:00 PM | CISA KEVOpen source |
Oracle Java SE Runtime Environment (JRE) Arbitrary Code Execution VulnerabilityAn incorrect type vulnerability exists in the Concurrency component of Oracle's Java Runtime Environment allows an attacker to remotely execute arbitrary code. Known ransomware use: Known. Java SE | criticalCVE-2012-0507 Critical | active | Mar 2, 2022, 6:00 PM | CISA KEVOpen source |
ITECS response pathways
These pathways connect the vendor watch feed into service-owner resources that already carry commercial authority.
Use the cybersecurity services pathway when this vendor alert needs an ITECS-managed response plan.
Connect the vendor watch page to broader managed detection, response, and governance planning.
Translate current watch items into a faster risk snapshot and prioritized remediation plan.
Return to the hub for cross-vendor prioritization, live filtering, and broader MSP threat context.
Vendor watch FAQ
It is the Oracle-specific view inside ITECS Threat Radar, built to track recent advisories, incidents, and watch items that may affect Dallas-area business operations.
Use it to confirm whether current Oracle issues overlap with your environment, prioritize remediation, and decide whether you need an assessment, managed security follow-through, or vendor-specific hardening work.
Yes. ITECS can help map Oracle advisories against your systems, validate affected services, prioritize remediation, and connect the issue to broader managed cybersecurity or managed IT workflows.