CVE-2026-34302

Name of the Vulnerable Software and Affected Versions Oracle E-Business Suite Oracle Workflow versions 12.2.3 through 12.2.15

Description An issue exists in the Workflow Loader component of the Oracle Workflow product. A high-privileged attacker with network access via HTTP can compromise Oracle Workflow, which may significantly impact additional products. Successful exploitation allows unauthorized update, insert, or delete access to certain accessible data and the ability to cause a partial denial of service (DoS), a condition where the system remains operational but some functions are unavailable.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.