The Hacker News

Oracle Patches Critical CVE-2026-21992 Enabling Unauthenticated RCE in Identity Manager

Oracle fixes CVE-2026-21992 (CVSS 9.8) flaw enabling unauthenticated RCE via HTTP, risking full system compromise.
Arabian Post

WebLogic flaw becomes an instant target

Oracle WebLogic operators are under pressure to close a critical security gap after attackers began probing and exploiting a newly disclosed flaw on the same day public exploit code appeared, ...
ZDNet

Oracle security update patches record 276 vulnerabilities

Oracle's latest patch update was released on Tuesday, containing a record 276 fixes for vulnerabilities across an array of Oracle software. According to the tech giant's security advisory, the July ...