#3
The Hacker News
general
June 30, 2026 at 05:04 UTC
Oracle E-Business Suite Flaw CVE-2026-46817 Actively Exploited in the Wild
By [email protected] (The Hacker News)
AI Summary
CVE-2026-46817 (CVSS 9.8), an improper privilege management and authentication flaw in Oracle E-Business Suite's Payments module, is now being actively exploited in the wild according to Defused Cyber, allowing unauthenticated attackers to fully take over vulnerable instances. Organizations running Oracle E-Business Suite should treat this as an emergency patch given the ease of exploitation and active in-the-wild abuse.
Relevance score: 85.0/100
Sponsored
Protect Your Business
Expert cybersecurity solutions to safeguard your organization from evolving threats.
Get Protected →