CVE-2026-21962

exploited in the wild
CVSS
10.0
Reports
2
First seen
Apr 14
Last seen
Jun 2
Affected product

Oracle HTTP Server (12.2.1.4.0, 14.1.1.0.0, 14.1.2.0.0); Oracle WebLogic Server Proxy Plug-in Apache (12.2.1.4.0, 14.1.1.0.0, 14.1.2.0.0); Oracle WebLogic Server Proxy Plug-in IIS (12.2.1.4.0)

Recent reports

This page shows data on a 7-day delay. Free accounts get the full delayed feed; real-time reports, indicators, and the API start at $29/mo.