CVE-2026-34323

Name of the Vulnerable Software and Affected Versions Oracle Life Sciences InForm versions 7.0.1.0 through 7.0.1.1

Description An issue exists in the IDM Authentication component of Oracle Life Sciences InForm. An unauthenticated attacker with network access via HTTP can compromise the system, although successful exploitation requires human interaction. This can lead to unauthorized read access to a subset of data, unauthorized update, insert, or delete access to certain accessible data, and the ability to cause a partial denial of service (DoS), which is a condition where the system becomes partially unavailable to users.

Recommendations For versions 7.0.1.0 through 7.0.1.1, at the moment, there is no information about a newer version that contains a fix for this vulnerability.