CVE-2026-21931

Name of the Vulnerable Software and Affected Versions Oracle APEX Sample Applications versions 23.2.0 through 23.2.1 Oracle APEX Sample Applications versions 24.1.0 through 24.2.1

Description A flaw exists within the Oracle APEX Sample Applications product, specifically the Brookstrut Sample App component. This issue allows a low-privileged attacker with network access via HTTP to compromise the application. Exploitation requires interaction from a user other than the attacker. While the issue is present in Oracle APEX Sample Applications, attacks may impact other products. Successful exploitation can lead to unauthorized data modification, insertion, deletion, and read access.

Recommendations Update Oracle APEX Sample Applications to a version later than 24.2.1. Update Oracle APEX Sample Applications to a version later than 23.2.1. Update Oracle APEX Sample Applications to a version later than 24.1.0. Update Oracle APEX Sample Applications to a version later than 23.2.0.