CVE-2021-35587
Oracle Fusion Middleware Unspecified Vulnerability
CVSS
—
No CVSS
EPSS
96.3%
p100
KEV
YES
Nov 28, 2022
Exploit Today
80
0-100
Published: — · Last modified: —
96.3%EPSS · 30 days96.3%
2026-06-302026-07-16
Product
Oracle / Fusion Middleware
Vulnerability
Oracle Fusion Middleware Unspecified Vulnerability
Added to KEV
Nov 28, 2022
Remediate by
Dec 19, 2022
Known ransomware use
No
Summary description
Oracle Fusion Middleware Access Manager allows an unauthenticated attacker with network access via HTTP to takeover the Access Manager product.
Required action
Apply updates per vendor instructions.
Notes
https://www.oracle.com/security-alerts/cpujan2022.html; https://nvd.nist.gov/vuln/detail/CVE-2021-35587
CVECVSSEPSSKEVRExploitTitleMod.
CVE-2012-3152—99.9%
KEV—80Oracle Fusion Middleware Unspecified Vulnerability—CVE-2020-2551—99.8%
KEV—80Oracle Fusion Middleware Unspecified Vulnerability—CVE-2025-61757—99.8%
KEV—80Oracle Fusion Middleware Missing Authentication for Critical Function Vulnerability—CVE-2012-1710—95.6%
KEV—79Oracle Fusion Middleware Unspecified Vulnerability—CVE-2012-0518—90.7%
KEV—77Oracle Fusion Middleware Unspecified Vulnerability—