InfoWorld

Oracle patches critical database hole

The buffer overflow vulnerability affects all supported versions of Oracle database servers and could enable a remote attacker to compromise the data Oracle released a patch for a recently-discovered ...
InfoWorld

Oracle ships critical patch update for database, applications

Oracle released its latest critical patch update on Wednesday, fixing 51 vulnerabilities in a range of products, including its flagship database line. Oracle’s critical patch update fixes holes in ...
The Hacker News

Oracle Patches Critical CVE-2026-21992 Enabling Unauthenticated RCE in Identity Manager

Oracle fixes CVE-2026-21992 (CVSS 9.8) flaw enabling unauthenticated RCE via HTTP, risking full system compromise.
Network World

Oracle patches 41 security flaws in database and other products

Oracle released 41 security fixes for its flagship database and several other products Tuesday, including 15 patches for vulnerabilities that can be exploited remotely without a username or password.
SecurityWeek

Oracle Releases Emergency Patch for Critical Identity Manager Vulnerability

Oracle issues out-of-band updates to patch CVE-2026-21992, a critical vulnerability in Identity Manager and Web Services ...
Dark Reading

Patch Now: Oracle's Fusion Middleware Has Critical RCE Flaw

Attackers can execute arbitrary code without authentication if Oracle's Identity or Web Services Managers are exposed to the Web.
Network World

Oracle to issue 41 security patches

Oracle will issue 41 security patches next Tuesday addressing vulnerabilities across “hundreds” of its products, the company said in a pre-release announcement. More than 15 of those patches address ...

Oracle Identity Manager: Out-of-band update against code smuggling vulnerability

Oracle has released an emergency update for Identity Manager and Web Services Manager to close a code smuggling vulnerability ...