Multiple critical vulnerabilities in Oracle Communications products (CVSS Base Score 9.8) allow a remote attacker, either anonymous or authenticated, to compromise confidentiality, integrity, and availability. The affected versions span a wide range, including but not limited to versions up to and including 9.0.4, 7.8.0, 15.0.1.0.0, 7.0.0, 17.1, 15.2.0.0, 7.5.1, 15.2.0.0.0, and 10.5.0.2. A mitigation is available, but the article does not specify a fixed version or a detailed workaround.
[WID-SEC-2026-1194] Oracle Communications: Mehrere Schwachstellen CVSS Base Score 9.8 (kritisch) CVSS Temporal Score 8.5 (hoch) Remoteangriff ja Datum 21.04.2026 Stand 22.04.2026 Mitigation ja Betroffene Systeme Betriebssystem Linux Sonstiges UNIX Windows Produktbeschreibung Oracle Communications umfasst branchenspezifische Lösungen für die Telekommunikationsbranche. Produkte 21.04.2026 Oracle Communications 6.0 Oracle Communications 6.1 Oracle Communications 8.0.0 Oracle Communications 15.0.0.0.0 Oracle Communications 5.2 Oracle Communications 4.2.0 Oracle Communications 9.3.0 Oracle Communications 14.0 Oracle Communications 25.1.100 Oracle Communications 10.0.0 Oracle Communications 24.2.4 Oracle Communications <=9.0.4 Oracle Communications 5.0.0 Oracle Communications 25.1.200 Oracle Communications 25.1.202 Oracle Communications 25.1.201 Oracle Communications 25.2.100 Oracle Communications 47.0 Oracle Communications 24.2.1 Oracle Communications 7.5.0 Oracle Communications 6.1.1 Oracle Communications 7.3.6 Oracle Communications 7.4.0 Oracle Communications 7.7.0 Oracle Communications <=7.8.0 Oracle Communications <=15.0.1.0.0 Oracle Communications <=15.0.1.0 Oracle Communications 17.0 Oracle Communications 11.0 Oracle Communications 8.1.0.0.0 Oracle Communications 15.0.0.1.0 Oracle Communications <=7.0.0 Oracle Communications 25.1.204 Oracle Communications 25.2.200 Oracle Communications 6.1.0.0.0 Oracle Communications <=17.1 Oracle Communications 10.1.0 Oracle Communications <=15.2.0.0 Oracle Communications 47.0.0.1.0 Oracle Communications 8.0.0.6.0 Oracle Communications 8.1.0.5.0 Oracle Communications 8.2.0.2.0 Oracle Communications <=7.5.1 Oracle Communications <=15.2.0.0.0 Oracle Communications 3.0.3.4.0 Oracle Communications 10.0.1.8.0 Oracle Communications <=10.5.0.2 Oracle Communications 7.6.0 Angriff Angriff Ein entfernter, anonymer oder authentisierter Angreifer kann mehrere Schwachstellen in Oracle Communications ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden. CVE Informationen Versionshistorie Feedback zum Advisory geben