PatchSiren cyber security CVE debrief
CVE-2026-35280 Oracle Corporation CVE debrief
A critical vulnerability was discovered in Oracle WebCenter Enterprise Capture, a product of Oracle Fusion Middleware. The vulnerability, tracked as CVE-2026-35280, has a CVSS 3.1 Base Score of 9.9, indicating a high severity level. It affects versions 12.2.1.4.0 and 14.1.2.0.0 of the product. The vulnerability is easily exploitable by a low-privileged attacker with network access via T3, IIOP, potentially leading to a takeover of Oracle WebCenter Enterprise Capture. The scope of the vulnerability is not limited to the product itself, as successful attacks may significantly impact additional products.
- Vendor
- Oracle Corporation
- Product
- Oracle WebCenter Enterprise Capture
- CVSS
- CRITICAL 9.9
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-17
- Original CVE updated
- 2026-06-23
- Advisory published
- 2026-06-17
- Advisory updated
- 2026-06-23
Who should care
Organizations using Oracle WebCenter Enterprise Capture versions 12.2.1.4.0 and 14.1.2.0.0 should prioritize patching this vulnerability. The vulnerability's high CVSS score and potential for significant impact on additional products make it a critical concern for enterprises relying on these versions.
Technical summary
The vulnerability is located in the Client Bundle component of Oracle WebCenter Enterprise Capture. It allows an attacker with low privileges and network access to compromise the product. The CVSS Vector is CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H, indicating a high severity level. The vulnerability can lead to a complete takeover of the affected product. Successful attacks may significantly impact additional products due to the scope change. Organizations should review their deployments and assess potential impact on connected systems. The CVE record and NVD entry provide critical details for understanding the vulnerability's impact and required mitigations.
Defensive priority
High
Recommended defensive actions
- Apply the security patch provided by Oracle Corporation as soon as possible.
- Implement compensating controls to monitor and restrict network access to Oracle WebCenter Enterprise Capture.
- Conduct an inventory check to identify all instances of Oracle WebCenter Enterprise Capture within the organization.
- Consider temporary mitigations, such as restricting access to the affected component or disabling T3, IIOP protocols if not required.
- Review system logs for indicators of compromise.
- Monitor network traffic for unusual activity.
- Perform a thorough risk assessment to identify potential targets.
Evidence notes
The CVE record was published on 2026-06-17T10:40:20.293Z and was last modified on 2026-06-23T13:55:31.493Z. The NVD entry is currently Analyzed. The vulnerability details were obtained from the official CVE record and NVD database.
Official resources
-
CVE-2026-35280 CVE record
CVE.org
-
CVE-2026-35280 NVD detail
NVD
-
Source item URL
nvd_modified
-
Mitigation or vendor reference
[email protected] - Vendor Advisory
AI-assisted PatchSiren debrief based on the supplied source corpus. The CVE record was published on 2026-06-17T10:40:20.293Z and has not been modified since then. The NVD entry is currently Analyzed.