Oracle issues urgent patch for critical RCE flaw in Identity Manager and Web Services Manager

Oracle has released an out-of-band security update for CVE-2026-21992, a critical remote code execution vulnerability affecting Oracle Identity Manager and Oracle Web Services Manager. The flaw is severe because Oracle says it can be exploited remotely without authentication, and successful attacks may lead to remote code execution. The issue affects supported versions 12.2.1.4.0 and 14.1.2.1.0 […] The post Oracle issues urgent patch for critical RCE flaw in Identity Manager and Web Services Manager appeared first on VPN Central.