CVE-2026-21962
exploited in the wildCVSS
10.0
Reports
2
First seen
Apr 14
Last seen
Jun 2
Affected product
Oracle HTTP Server (12.2.1.4.0, 14.1.1.0.0, 14.1.2.0.0); Oracle WebLogic Server Proxy Plug-in Apache (12.2.1.4.0, 14.1.1.0.0, 14.1.2.0.0); Oracle WebLogic Server Proxy Plug-in IIS (12.2.1.4.0)