FAIL › dossier
FedRAMP provider ·
Dossier not yet built — the RAG curator builds one for players with ≥2 failure events (factory/dossier.py). The failure history and sentiment below are live.
| Date | Event | Sev | Flags | Shame | Summary |
|---|---|---|---|---|---|
| 2026-06-12 | CVE-2026-35273 | critical | ⚡RCE ⌖KEV | 85 | Oracle PeopleTools lacks authentication for critical functions, enabling unauthenticated attackers to gain full system control. |
| 2026-06-01 | CVE-2024-21182 | high | ⌖KEV | 45 | Oracle WebLogic Server vulnerability CVE-2024-21182 allows unauthenticated remote access to critical data via T3/IIOP protocols. |
| Product | Status | Impact |
|---|---|---|
| Aconex for Defense | Authorized | Moderate |
| Federal Managed Cloud Services | Authorized | Moderate |
| Fusion Cloud | Authorized | Moderate |
| Government Cloud - Common Controls | Authorized | High |
| Oracle Cloud Infrastructure-Government Cloud | Authorized | High |
| Oracle Enterprise Performance Management (EPM) | Authorized | Low |
| Oracle Enterprise Performance Management (EPM) - Moderate | In Process | Moderate |
| Oracle Service Cloud | Authorized | Moderate |
| Oracle Service Cloud (DOD) | Authorized | Moderate |
| Taleo Cloud - U.S. Government Cloud | Authorized | Moderate |