CVE-2026-35277 | Oracle REST Data Services up to 26.1.0 Core improper authorization

A vulnerability classified as critical was found in Oracle REST Data Services up to 26.1.0. Affected is an unknown function of the component Core. Such manipulation leads to improper authorization.

This vulnerability is documented as CVE-2026-35277. The attack can be executed remotely. There is not any exploit available.

Upgrading the affected component is advised.VulDB Recent EntriesRead More