CVE-2026-21969 | Oracle Agile Product Lifecycle Management for Process 6.2.4 Supplier Portal Remote Code Execution

Inserito da Angelo Barbosa | Gen 20, 2026 | CVE

A vulnerability labeled as critical has been found in Oracle Agile Product Lifecycle Management for Process 6.2.4. This affects an unknown part of the component Supplier Portal. Executing a manipulation can lead to Remote Code Execution.

This vulnerability appears as CVE-2026-21969. The attack may be performed from remote. There is no available exploit.

The affected component should be upgraded.

CVE-2026-21969 | Oracle Agile Product Lifecycle Management for Process 6.2.4 Supplier Portal Remote Code Execution

Post correlati

CVE-2025-64747 | Directus up to 11.12.x App Dashboard cross site scripting (GHSA-vv2v-pw69-8crf)

CVE-2024-10151 | Auto iFrame Plugin up to 1.x on WordPress Shortcode cross site scripting

CVE-2025-23045 | cvat up to 2.25.x Nuclio Function Container deserialization

CVE-2023-42959 | Apple macOS up to 13.x race condition