Unauthenticated Access Vulnerability in Oracle Financial Services Transaction Filtering
CVE-2026-35231

7.5HIGH

Key Information:

Vendor: Oracle
Status: Oracle Financial Services Transaction Filtering
Vendor: CVE Published:; 21 April 2026

What is CVE-2026-35231?

A vulnerability exists in the Oracle Financial Services Transaction Filtering product, specifically in its User Interface component. This issue allows an unauthenticated attacker to exploit network access via HTTP, potentially compromising Oracle Financial Services Transaction Filtering. As a result, this exploitation can lead to unauthorized access to sensitive data, providing attackers with the ability to view and manipulate critical information stored within the system. Users of affected versions should take immediate action to mitigate risks associated with this serious security concern.

Affected Version(s)

Oracle Financial Services Transaction Filtering 8.1.2.8.0

References

https://www.oracle.com/security-alerts/cpuapr2026.html

vendor-advisory

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 21, 2026
Vulnerability Reserved
Apr 1, 2026

CVE-2026-35231 Data

JSON