Oracle News Articles
Recent news articles refferecing the vendors vulnerabilities.
The Hacker NewsCVE-2026-35273ShinyHunters Exploits Oracle PeopleSoft Zero-Day (CVE-2026-35273) to Breach Universities
Oracle PeopleSoft zero-day CVE-2026-35273 was exploited before Oracle's June 10 advisory, exposing data and triggering extortion attacks.
11 hours ago
Oracle mitigates PeopleSoft zero-day exploited in data theft attacks
Oracle is warning about a critical PeopleSoft Suite zero-day vulnerability tracked as CVE-2026-35273 that allows unauthenticated remote code execution, with the flaw actively exploited in ShinyHunter data theft attacks.
11 hours ago
ShinyHunters claims it hacked 100 orgs by exploiting an Oracle PeopleSoft 0-day
University of Nottingham is first of many, Shiny tells The Reg
12 hours ago
CISA Flags 2-Year-Old Oracle WebLogic Vulnerability as Actively Exploited
CISA added Oracle WebLogic flaw CVE-2024-21182 to its KEV catalog, giving federal agencies until June 4 to patch exposed servers.
1 week ago
SwapupdateCVE-2024-21182Oracle WebLogic CVE-2024-21182 Added to KEV Catalog After Active Exploitation
Ravie LakshmananJun 02, 2026Vulnerability / Network Security
1 week ago
The Hacker NewsCVE-2024-21182Oracle WebLogic CVE-2024-21182 Added to KEV Catalog After Active Exploitation
CVE-2024-21182 entered CISA's KEV catalog after active exploitation evidence, requiring federal patching by June 4, 2026.
1 week ago
CISA flags two-year-old Oracle flaw as actively exploited in attacks
CISA has ordered government agencies to secure their systems against a high-severity Oracle WebLogic Server vulnerability that was patched two years ago and is now actively exploited in attacks.
1 week ago
It Security NewsCVE-2024-21182Oracle WebLogic Vulnerability Exploited in the Wild - IT Security News
The vulnerability is CVE-2024-21182 and it can be exploited without authentication to hack affected WebLogic servers. The post Oracle WebLogic Vulnerability Exploited in the Wild appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original article:…Read more →
1 week ago
Oracle WebLogic Vulnerability Exploited in the Wild
CISA is warning organizations that an Oracle WebLogic vulnerability patched nearly two years ago is being exploited in the wild.
1 week ago
CVE-2025-61757: Oracle Identity Manager RCE
Summary of CVE-2025-61757 auth bypass in Oracle Identity Manager enabling unauthenticated RCE, with observed scanning, patch details, and detection tips.
CyberSecurityNewsCVE-2025-61882Canon Allegedly Breached by Clop Ransomware via Oracle E-Business Suite 0-Day Hack
Canon confirms it was targeted in the massive Clop ransomware campaign exploiting a zero-day in Oracle E-Business Suite (CVE-2025-61882).
Critical Oracle Identity Manager Flaw Under Attack
The exploitation of CVE-2025-61757 follows a breach of Oracle Cloud earlier this year and a extortion campaign against Oracle E-Business Suite customers.
The Cyber ExpressCVE-2025-61757CISA Adds Oracle Identity Manager Vulnerability To KEV
CISA has added an Oracle Identity Manager vulnerability to its Known Exploited Vulnerabilities catalog after SANS reported attack attempts on the flaw.
CISA Confirms Exploitation of Recent Oracle Identity Manager Vulnerability
The cybersecurity agency CISA has confirmed that a recently patched Oracle Identity Manager vulnerability has been exploited in the wild.
CISA Confirms Exploitation of Recent Oracle Identity Manager Vulnerability
The cybersecurity agency CISA has confirmed that a recently patched Oracle Identity Manager vulnerability has been exploited in the wild.
GBHackers NewsCVE-2025-61757CISA Issues Warning as Hackers Target Oracle Identity Manager RCE Flaw
CISA has added a new Oracle vulnerability to its KEV catalog, warning that attackers are already exploiting, tracked as CVE-2025-61757.
GBHackers NewsCVE-2025-61757CISA Issues Warning as Hackers Target Oracle Identity Manager RCE Flaw
CISA has added a new Oracle vulnerability to its KEV catalog, warning that attackers are already exploiting, tracked as CVE-2025-61757.
Cyber PressCVE-2025-61757CISA Alerts on Oracle Identity Manager RCE Flaw Being Actively Exploited
CISA has issued an urgent warning about a critical remote code execution vulnerability in Oracle Identity Manager that threat actors are actively exploiting.
Red Hot CyberCVE-2025-61757Oracle under attack: Pre-auth RCE vulnerability discovered that compromises entire systems
A critical pre-authentication remote code execution vulnerability has been discovered in Oracle Identity Manager, identified as CVE-2025-61757.
Security AffairsCVE-2025-61757U.S. CISA adds an Oracle Fusion Middleware flaw to its Known Exploited Vulnerabilities catalog
U.S. CISA adds an Oracle Fusion Middleware vulnerability to its Known Exploited Vulnerabilities catalog...
CISA warns Oracle Identity Manager RCE flaw is being actively exploited
The U.S. Cybersecurity & Infrastructure Security Agency (CISA) is warning government agencies to patch an Oracle Identity Manager tracked as CVE-2025-61757 that has been exploited in attacks, potentially as a zero-day.
Critical Oracle Identity Manager RCE flaw revealed, PoC published
Researchers published proof-of-concept code for authentication bypass and RCE in OIM.
Cyber PressCVE-2025-61882Oracle Allegedly Breached by Clop Ransomware via E-Business Suite 0-Day Hack
The group claims to have successfully breached the tech giant's internal systems using a critical zero-day vulnerability in Oracle E-Business Suite (EBS), designated as CVE-2025-61882.