The Hacker News

Oracle Patches Critical CVE-2026-21992 Enabling Unauthenticated RCE in Identity Manager

Oracle fixes CVE-2026-21992 (CVSS 9.8) flaw enabling unauthenticated RCE via HTTP, risking full system compromise.

Oracle pushes emergency fix for critical Identity Manager RCE flaw

Oracle has released an out-of-band security update to fix a critical unauthenticated remote code execution vulnerability in Identity Manager and Web Services Manager tracked as CVE-2026-21992.
Dark Reading

Oracle's Acquisition of Sun Changes Identity Management Landscape

Oracle's stealing Sun at the altar of a possible marriage with IBM not only saves Oracle from a long-standing partnership going stale, but also significantly bolsters Oracle's security ...
dbta

Cloakware and Oracle Integrate Cloakware Password Authority with Oracle Identity and Access Management

Cloakware, a provider of privileged password management solutions, has announced that it is working with Oracle to extend Oracle's suite of Identity Management solutions with Cloakware's flagship ...