Oracle Application Development Framework — known CVE vulnerabilities
Every CVE whose affected-product data names Oracle Application Development Framework, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVE-2026-35243 — CVSS 7.8 (high): Vulnerability in the Oracle Application Development Framework (ADF) product of Oracle Fusion Middleware (component: ADF Faces). Supported…
CVE-2026-46769 — CVSS 7.2 (high): Vulnerability in the Oracle Application Development Framework (ADF) product of Oracle Fusion Middleware (component: ADF Shared Components)…
CVE-2026-46770 — CVSS 6.1 (medium): Vulnerability in the Oracle Application Development Framework (ADF) product of Oracle Fusion Middleware (component: Security Framework)…
CVE-2026-46772 — CVSS 4.7 (medium): Vulnerability in the Oracle Application Development Framework (ADF) product of Oracle Fusion Middleware (component: ADF Faces). Supported…
CVE-2026-46771 — CVSS 4.1 (medium): Vulnerability in the Oracle Application Development Framework (ADF) product of Oracle Fusion Middleware (component: Java Business Objects)…
CVE-2019-2899 — CVSS 2.4 (low): Vulnerability in the Oracle JDeveloper and ADF product of Oracle Fusion Middleware (component: OAM). Supported versions that are affected…