Total CVEs

145,459

Critical Severity

4,246

High Severity

15,641

Last 7 Days

2,355
Quick preset (or use dates below)
Clear Filters
๐Ÿ“… Showing Year: 2026 (January 1 - December 31, 2026) View All Years โ†’
Showing 21,501 - 21,520 of 41,864 CVEs
CVE-2026-33518 CRITICAL - 9.8

An incorrect privilege assignment vulnerability exists in Esri Portal for ArcGIS 11.5 in Windows and Linux that allows highly privileged users to create developer credentials that may grant more privileges than expected.

Vendor: Esri
Product: Portal for ArcGIS
Published: Apr 21, 2026
Source: NVD
CVE-2026-22021 MEDIUM - 5.3

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JSSE). Supported versions that are affected are Oracle Java SE: 8u481, 8u481-b50, 8u481-perf, 11.0.30, 17.0.18, 21.0.10, 25.0.2, 26; Oracle GraalVM for JDK: 17.0.18 a...

Vendor: oracle
Product: jre
Published: Apr 21, 2026
Source: NVD
CVE-2026-22019 MEDIUM - 5.4

Vulnerability in the PeopleSoft Enterprise HCM Shared Components product of Oracle PeopleSoft (component: Person Search). The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise ...

Vendor: oracle
Product: peoplesoft_enterprise_hcm_shared_components
Published: Apr 21, 2026
Source: NVD

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 8u481, 8u481-b50, 8u481-perf, 11.0.30, 17.0.18, 21.0.10, 25.0.2, 26; Oracle GraalVM for JDK: 17.0...

Vendor: oracle
Product: jre
Published: Apr 21, 2026
Source: NVD
CVE-2026-22017 MEDIUM - 6.5

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.0-8.0.45, 8.4.0-8.4.8 and 9.0.0-9.6.0. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MyS...

Vendor: oracle
Product: mysql_server
Published: Apr 21, 2026
Source: NVD
CVE-2026-22016 HIGH - 7.5

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JAXP). Supported versions that are affected are Oracle Java SE: 8u481, 8u481-b50, 8u481-perf, 11.0.30, 17.0.18, 21.0.10, 25.0.2, 26; Oracle GraalVM for JDK: 17.0.18 a...

Vendor: oracle
Product: jre
Published: Apr 21, 2026
Source: NVD
CVE-2026-22015 MEDIUM - 4.3

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Information Schema). Supported versions that are affected are 8.0.0-8.0.45, 8.4.0-8.4.8 and 9.0.0-9.6.0. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compr...

Vendor: oracle
Product: mysql_server
Published: Apr 21, 2026
Source: NVD

Vulnerability in the Oracle User Management product of Oracle E-Business Suite (component: Workflow and Business Events). Supported versions that are affected are 12.2.7-12.2.15. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle User ...

Vendor: oracle
Product: user_management
Published: Apr 21, 2026
Source: NVD
CVE-2026-22013 MEDIUM - 5.3

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JGSS). Supported versions that are affected are Oracle Java SE: 8u481, 8u481-b50, 8u481-perf, 11.0.30, 17.0.18, 21.0.10, 25.0.2, 26; Oracle GraalVM for JDK: 17.0.18 a...

Vendor: oracle
Product: jdk
Published: Apr 21, 2026
Source: NVD
CVE-2026-22011 HIGH - 7.6

Vulnerability in the Oracle Applications DBA product of Oracle E-Business Suite (component: ADPatch). Supported versions that are affected are 12.2.3-12.2.15. Difficult to exploit vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle Applications DBA. Succ...

Vendor: oracle
Product: applications_dba
Published: Apr 21, 2026
Source: NVD
CVE-2026-22010 HIGH - 7.5

Vulnerability in the Oracle Financial Services Analytical Applications Infrastructure product of Oracle Financial Services Applications (component: Platform). Supported versions that are affected are 8.0.7.9, 8.0.8.7 and 8.1.2.5. Easily exploitable vulnerability allows unauthenticated attacker wit...

Vendor: oracle
Product: financial_services_analytical_applications_infrastructure
Published: Apr 21, 2026
Source: NVD
CVE-2026-22009 MEDIUM - 6.5

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.0-8.0.45, 8.4.0-8.4.8 and 9.0.0-9.6.0. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MyS...

Vendor: oracle
Product: mysql_server
Published: Apr 21, 2026
Source: NVD

Vulnerability in Oracle Java SE (component: Libraries). The supported version that is affected is Oracle Java SE: 25.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE. Successful attacks of this vulnerab...

Vendor: oracle
Product: jdk
Published: Apr 21, 2026
Source: NVD

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Security). Supported versions that are affected are Oracle Java SE: 8u481, 8u481-b50, 8u481-perf, 11.0.30, 17.0.18, 21.0.10, 25.0.2, 26; Oracle GraalVM for JDK: 17.0....

Vendor: oracle
Product: graalvm
Published: Apr 21, 2026
Source: NVD
CVE-2026-22006 MEDIUM - 5.4

Vulnerability in the PeopleSoft Enterprise HCM Human Resources product of Oracle PeopleSoft (component: Employee Snapshot). The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSoft Enterpris...

Vendor: oracle
Product: peoplesoft_enterprise_hcm_human_resources
Published: Apr 21, 2026
Source: NVD
CVE-2026-22005 MEDIUM - 4.9

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.0-8.0.45, 8.4.0-8.4.8 and 9.0.0-9.6.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise My...

Vendor: oracle
Product: mysql_server
Published: Apr 21, 2026
Source: NVD
CVE-2026-22004 MEDIUM - 4.9

Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.0-8.0.45, 8.4.0-8.4.8 and 9.0.0-9.6.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server....

Vendor: oracle
Product: mysql_server
Published: Apr 21, 2026
Source: NVD
CVE-2026-22003 MEDIUM - 6.0

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 8u481 and 8u481-b50; Oracle GraalVM Enterprise Edition: 21.3.17. Difficult to exploit vulnerability allows low privileged ...

Vendor: oracle
Product: graalvm
Published: Apr 21, 2026
Source: NVD
CVE-2026-22002 MEDIUM - 4.9

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.0-8.0.45, 8.4.0-8.4.8 and 9.0.0-9.6.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise My...

Vendor: oracle
Product: mysql_server
Published: Apr 21, 2026
Source: NVD

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Information Schema). Supported versions that are affected are 8.0.0-8.0.45, 8.4.0-8.4.8 and 9.0.0-9.6.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to comp...

Vendor: oracle
Product: mysql_server
Published: Apr 21, 2026
Source: NVD