Identity & Access Management · head-to-head
CyberArk vs Oracle Identity
On-prem IAM/IGA/PAM/MFA: directories, federation, privileged access, SSO. Counts are scoped to this segment and the selected published-date window. Oracle Identity carries 2.0× the disclosed CVE volume of CyberArk. Volume reflects disclosure practice and install base as much as code quality — read it with the severity mix. Sourced from the NIST NVD; lower counts indicate a smaller disclosed vulnerability surface — not necessarily lower risk.
Disclosure record
Bars are normalized per row to the larger value; the leading count is emphasized.
| CyberArk | Metric | Oracle Identity | ||
|---|---|---|---|---|
| 7 | Total CVEs | 14 | ||
| 2 | Critical | 6 | ||
| 3 | High | 4 | ||
| 2 | Medium | 4 | ||
| 0 | Low | 0 | ||
| 6 | Open in latest | 104 |
Risk profile
Each severity band as a share of the vendor's own total — strips out raw volume so the profiles compare directly.
CyberArk
28.6% critical- Critical
- 228.6%
- High
- 342.9%
- Medium
- 228.6%
- Low
- 00.0%
Oracle Identity
42.9% critical- Critical
- 642.9%
- High
- 428.6%
- Medium
- 428.6%
- Low
- 00.0%
Recent activity
Latest in-window disclosures per vendor, newest first. Each ID links to its NVD record.
CyberArk
| CVE | Severity | CVSS | Published |
|---|---|---|---|
| CVE-2026-2914(opens NVD record) | High | 7.8 | Feb 25, 2026 |
| CVE-2025-66374(opens NVD record) | High | 7.8 | Feb 3, 2026 |
| CVE-2025-49831(opens NVD record) | Critical | 9.8 | Jul 15, 2025 |
| CVE-2025-49830(opens NVD record) | Medium | 6.5 | Jul 15, 2025 |
| CVE-2025-49829(opens NVD record) | Medium | 6.5 | Jul 15, 2025 |
| CVE-2025-49828(opens NVD record) | High | 8.8 | Jul 15, 2025 |
Oracle Identity
| CVE | Severity | CVSS | Published |
|---|---|---|---|
| CVE-2026-46812(opens NVD record) | Medium | 6.1 | Jun 17, 2026 |
| CVE-2026-46810(opens NVD record) | Medium | 6.5 | Jun 17, 2026 |
| CVE-2026-46807(opens NVD record) | Critical | 9.8 | Jun 17, 2026 |
| CVE-2026-35314(opens NVD record) | High | 7.3 | Jun 17, 2026 |
| CVE-2026-35313(opens NVD record) | Critical | 9.9 | Jun 17, 2026 |
| CVE-2026-35294(opens NVD record) | Critical | 9.9 | Jun 17, 2026 |
Track new CVEs for these vendors
Get an email the moment a new vulnerability is disclosed for the products you rely on.