Known Vulnerabilities for Application Server by Oracle
Listed below are 10 of the newest known vulnerabilities associated with "Application Server" by "Oracle".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-44286 json | FastGPT is an AI Agent building platform. Prior to version 4.14.17, an unauthenticated Server-Side Request Forgery (SSRF) vul... | Not Provided | 2026-05-08 | 2026-05-11 |
| CVE-2026-44240 json | basic-ftp is an FTP client for Node.js. Prior to 5.3.1, basic-ftp is vulnerable to client-side denial of service when parsing... | Not Provided | 2026-05-12 | 2026-05-12 |
| CVE-2026-43929 json | ssrfcheck is a library that checks if a string contains a potential SSRF attack. In 1.3.0 and earlier, ssrfcheck fails to blo... | Not Provided | 2026-05-12 | 2026-05-12 |
| CVE-2026-42864 json | FireFighter is an incident management application. Prior to 0.0.54, the POST /api/v2/firefighter/raid/jira_bot endpoint (Crea... | Not Provided | 2026-05-11 | 2026-05-11 |
| CVE-2026-42545 json | Granian is a Rust HTTP server for Python applications. From 0.2.0 to 2.7.4, Granian aborts a worker process if a WSGI applica... | Not Provided | 2026-05-12 | 2026-05-12 |
| CVE-2026-42544 json | Granian is a Rust HTTP server for Python applications. From 1.2.0 to 2.7.4, Granian aborts a worker process when an unauthent... | Not Provided | 2026-05-12 | 2026-05-12 |
| CVE-2026-42369 json | GV-VMS V20 is a Video Monitoring Software used to gather the feeds of many surveillance cameras and manage other security dev... | Not Provided | 2026-05-04 | 2026-05-04 |
| CVE-2026-42348 json | OpenTelemetry.OpAmp.Client is the OpAMP client for OpenTelemetry .NET. Prior to 0.2.0-alpha.1, when receiving responses from ... | Not Provided | 2026-05-12 | 2026-05-12 |
| CVE-2026-42238 json | Nginx UI is a web user interface for the Nginx web server. Prior to version 2.3.8, nginx-ui exposes a backup restore endpoint... | Not Provided | 2026-05-04 | 2026-05-05 |
| CVE-2026-42195 json | draw.io is a configurable diagramming and whiteboarding application. Prior to version 29.7.9, the draw.io client accepts a ?g... | Not Provided | 2026-05-08 | 2026-05-08 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Oracle | Application Server | 9.2.0.7 | |||
| Application | Oracle | Application Server | 9.2.0.6 | |||
| Application | Oracle | Application Server | 9.0.4.3 | |||
| Application | Oracle | Application Server | 9.0.4.2 | |||
| Application | Oracle | Application Server | 9.0.4.1 | |||
| Application | Oracle | Application Server | 9.0.4.0 | |||
| Application | Oracle | Application Server | 9.0.4 | |||
| Application | Oracle | Application Server | 9.0.3.1 | |||
| Application | Oracle | Application Server | 9.0.3 | |||
| Application | Oracle | Application Server | 9.0.2.3 | |||
| Application | Oracle | Application Server | 9.0.2.2 | |||
| Application | Oracle | Application Server | 9.0.2.1 | |||
| Application | Oracle | Application Server | 9.0.2.0.1 | |||
| Application | Oracle | Application Server | 9.0.2.0.0 | |||
| Application | Oracle | Application Server | 9.0.2 | |||
| Application | Oracle | Application Server | 9.0.2 | |||
| Application | Oracle | Application Server | 9.0 | |||
| Application | Oracle | Application Server | 8.1.7 | |||
| Application | Oracle | Application Server | 7.0.4.4 | |||
| Application | Oracle | Application Server | 4.0.8.2 |