Dark Reading

Patch Now: Oracle's Fusion Middleware Has Critical RCE Flaw

Attackers can execute arbitrary code without authentication if Oracle's Identity or Web Services Managers are exposed to the Web.
SecurityWeek

Oracle Releases Emergency Patch for Critical Identity Manager Vulnerability

Oracle issues out-of-band updates to patch CVE-2026-21992, a critical vulnerability in Identity Manager and Web Services ...

Oracle Identity Manager: Out-of-band update against code smuggling vulnerability

Oracle has released an emergency update for Identity Manager and Web Services Manager to close a code smuggling vulnerability ...
TechRadar

Oracle races to patch a another zero-day following rise in attacks

Oracle patched CVE-2025-61884, a critical unauthenticated E-Business Suite vulnerability ShinyHunters allegedly exploited the flaw to steal sensitive corporate data from multiple organizations This is ...