该漏洞的 CVSS 3.1 基础评分为 9.8，属于 Oracle 风险评估体系中最严重的等级之一。 该漏洞在机密性（Confidentiality）、完整性（Integrity）和可用性（Availability）三个方面的影响均被评为“高”，表明一旦成功利用，攻击者可能完全控制受影响系统。 在 Oracle Identity Manager 中，漏洞存在于 REST Web Services ...

Oracle fixes CVE-2026-21992 (CVSS 9.8) flaw enabling unauthenticated RCE via HTTP, risking full system compromise.

Oracle has released an emergency update for Identity Manager and Web Services Manager to close a code smuggling vulnerability ...

Oracle has released an out-of-band security update to fix a critical unauthenticated remote code execution vulnerability in Identity Manager and Web Services Manager tracked as CVE-2026-21992.

Oracle plans to combine two of its Web services products to make it easier for developers to set security policies for applications built using its Oracle BPEL Process Manager software, a company ...

After more than a decade of competition, Amazon Web Services (AMZN) is changing course on Oracle (ORCL). On Monday, AWS announced a partnership with Oracle that will allow customers to access Oracle ...

Oracle and Amazon Web Services (AWS) unveiled Oracle Database@AWS, a new service that integrates Oracle Autonomous Database and Oracle Exadata Database Service with AWS infrastructure. This ...

Oracle announced a strategic partnership with Amazon Web Services on Monday afternoon that will further integrate its database offerings and cloud infrastructure with the Seattle tech giant’s cloud ...

Because Oracle plans to combine the BPEL (Business Process Execution Language) tool with its Oracle Web Services Manager product, software developers will no longer have to spend as much time ...

Much discussion about IT security centers around the idea that developers should build secure applications. It makes sense; more than ever, attackers are targeting vulnerabilities in the application ...