Fusion-Middleware

vulnerabilities 2026-04-02 Critical
Oracle Identity Manager Pre-Auth RCE: CVE-2026-21992 Emergency Patch
Oracle issued an out-of-band emergency fix for CVE-2026-21992, a CVSS 9.8 unauthenticated RCE in Oracle Identity Manager's REST WebServices component affecting versions 12.2.1.4.0 and 14.1.2.1.0.
oracle identity-manager rce pre-auth cve-2026-21992 iam fusion-middleware

Oracle Identity Manager Pre-Auth RCE: CVE-2026-21992 Emergency Patch