The Hacker News

Oracle Patches Critical CVE-2026-21992 Enabling Unauthenticated RCE in Identity Manager

Oracle fixes CVE-2026-21992 (CVSS 9.8) flaw enabling unauthenticated RCE via HTTP, risking full system compromise.
Dark Reading

Patch Now: Oracle's Fusion Middleware Has Critical RCE Flaw

Attackers can execute arbitrary code without authentication if Oracle's Identity or Web Services Managers are exposed to the Web.

Oracle pushes emergency fix for critical Identity Manager RCE flaw

Oracle has released an out-of-band security update to fix a critical unauthenticated remote code execution vulnerability in Identity Manager and Web Services Manager tracked as CVE-2026-21992.

Oracle Identity Manager: Out-of-band update against code smuggling vulnerability

Oracle has released an emergency update for Identity Manager and Web Services Manager to close a code smuggling vulnerability ...
GeekWire

With new Amazon Web Services partnership, Oracle’s cloud database trade-off is complete

Oracle announced a strategic partnership with Amazon Web Services on Monday afternoon that will further integrate its database offerings and cloud infrastructure with the Seattle tech giant’s cloud ...
cio.economictimes.indiatimes

Oracle and Amazon Web Services unveil strategic partnership

Oracle and Amazon Web Services (AWS) unveiled Oracle Database@AWS, a new service that integrates Oracle Autonomous Database and Oracle Exadata Database Service with AWS infrastructure. This ...
Yahoo Finance

Oracle 'alive and well' amid new partnership with Amazon Web Services

After more than a decade of competition, Amazon Web Services (AMZN) is changing course on Oracle (ORCL). On Monday, AWS announced a partnership with Oracle that will allow customers to access Oracle ...