CVE-2026-21967 | Oracle Hospitality OPERA 5 5.6.19.23/5.6.25.17/5.6.26.10/5.6.27.4 Opera Servlet Remote Code Execution

Inserito da Angelo Barbosa | Gen 20, 2026 | CVE

A vulnerability identified as critical has been detected in Oracle Hospitality OPERA 5 5.6.19.23/5.6.25.17/5.6.26.10/5.6.27.4. Affected by this issue is some unknown functionality of the component Opera Servlet. Performing a manipulation results in Remote Code Execution.

This vulnerability is reported as CVE-2026-21967. The attack is possible to be carried out remotely. No exploit exists.

You should upgrade the affected component.

CVE-2026-21967 | Oracle Hospitality OPERA 5 5.6.19.23/5.6.25.17/5.6.26.10/5.6.27.4 Opera Servlet Remote Code Execution

Post correlati

CVE-2024-1189 | AMPPS 2.7 Encryption Passphrase denial of service

CVE-2024-21650 | XWiki xwiki-platform up to 14.10.16/15.5.2/15.7 User Registration first name/last name neutralization of directives

CVE-2024-35912 | Linux Kernel up to 5.15.153/6.1.84/6.6.25/6.8.4 iwlwifi kmemdup memory leak

CVE-2024-45590 | expressjs body-parser up to 1.20.2 amplification (GHSA-qwcr-r2fm-qrc7)