Oracle Identity Manager

Oracle pushes emergency fix for critical Identity Manager RCE flaw

March 23, 2026March 23, 2026 geekfeed0Tagged CVE-2026-21992, Oracle, Oracle Identity Manager, Out-of-Band, Pre-Authentication, Remote Code Execution, vulnerability

Oracle has released an out-of-band security update to fix a critical unauthenticated remote code execution vulnerability in Identity Manager and Web Services Manager tracked as CVE-2026-21992. Oracle Identity Manager is used for managing identities and access across an enterprise, while Oracle Web Services Manager provides security and management controls for web services. In an advisory […]

2 mins read

CISA warns Oracle Identity Manager RCE flaw is being actively exploited

November 24, 2025November 24, 2025 geekfeed0Tagged Actively Exploited, CISA, CVE-2025-61757, Oracle, Oracle Identity Manager, rce

The U.S. Cybersecurity & Infrastructure Security Agency (CISA) is warning government agencies to patch an Oracle Identity Manager tracked as CVE-2025-61757 that has been exploited in attacks, potentially as a zero-day. CVE-2025-61757 is a pre-authentication RCE vulnerability in Oracle Identity Manager, discovered and disclosed by Searchlight Cyber analysts Adam Kues and Shubham Shahflaw. The flaw stems […]

3 mins read