CVE-2026-34324

Name of the Vulnerable Software and Affected Versions Oracle Life Sciences InForm versions 7.0.1.0 through 7.0.1.1

Description An issue in the App Server component allows an unauthenticated attacker with network access via HTTP to compromise the system. This can lead to unauthorized read access to a subset of data, as well as unauthorized update, insert, or delete access to certain accessible data.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.