Home / Jul 01, 2026 / Story
0
#3 The Hacker News general June 30, 2026 at 05:04 UTC

Oracle E-Business Suite Flaw CVE-2026-46817 Actively Exploited in the Wild

By [email protected] (The Hacker News)

AI Summary

CVE-2026-46817 (CVSS 9.8), an improper privilege management and authentication flaw in Oracle E-Business Suite's Payments module, is now being actively exploited in the wild according to Defused Cyber, allowing unauthenticated attackers to fully take over vulnerable instances. Organizations running Oracle E-Business Suite should treat this as an emergency patch given the ease of exploitation and active in-the-wild abuse.

Relevance score: 85.0/100

# More from July 01