CVE-2026-22011

Name of the Vulnerable Software and Affected Versions Oracle Applications DBA versions 12.2.3 through 12.2.15

Description An issue exists in the ADPatch component of the Oracle Applications DBA product of Oracle E-Business Suite. A high privileged attacker with network access via HTTP can compromise the system, potentially leading to a full takeover of Oracle Applications DBA. Exploitation is difficult and requires human interaction from a person other than the attacker. While the issue resides in Oracle Applications DBA, successful attacks may significantly impact additional products due to a change in scope.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.