Oracle E-Business Suite Flaw CVE-2026-46817 Actively Exploited in the Wild
ID: 9936da08-4837-54b0-a5a3-8050f3dce2ad
STIX ID: report--9936da08-4837-54b0-a5a3-8050f3dce2ad
Feed Name: The Hacker News
A critical authentication/privilege-management vulnerability in Oracle Payments (CVE-2026-46817, CVSS 9.8) affecting E-Business Suite 12.2.3–12.2.15 is being actively exploited in the wild; Oracle has released patches, but exploitation was observed against honeypots and details about attack techniques and attribution remain unknown. The report links this activity to a pattern of recent, high-impact Oracle product exploits (including incidents used by Cl0p and ShinyHunters) and highlights prior customer impacts such as Nissan’s PeopleSoft breach.
Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.
