VDB

GCVE-110-NCSC-2025-335

GCVE-110-NCSC-2025-335
Advisory PublishedCVSS 8.2/10
Vulnetix · Advisory published October 23, 2025
Recent vulnerabilities in Oracle WebCenter Forms Recognition and Apache CXF expose systems to data compromise and denial of service risks, with CVSS scores indicating significant impacts on confidentiality, integrity, and availability.

Weaknesses (CWE)

CWE-400Uncontrolled Resource ConsumptionCWE-20Improper Input ValidationCWE-392Missing Report of Error ConditionCWE-770Allocation of Resources Without Limits or ThrottlingCWE-284Improper Access ControlCWE-267Privilege Defined With Unsafe Actions

Risk Scores

CVSS 3.1
8.2/10
High · CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N

Affected Products

VendorProductVersionsPlatforms
Oraclevers:unknown/*

References

advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory

Browse GCVE Records

72,921 records in the GCVE database · Updated July 15, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›