Security Advisory

Oracle Product Security Update Advisory (CVE-2026-21992)

  • Mar 26 2026
Oracle Product Security Update Advisory (CVE-2026-21992)

overview

We have released security updates that address vulnerabilities in Oracle products. users of affected products are encouraged to update to the latest version.

affected products

CVE-2026-21992

Oracle Identity Manager Version: 12.2.1.4.0
Oracle Identity Manager Version: 14.1.2.1.0
Oracle Web Services Manager Version: 12.2.1.4.0
Oracle Web Services Manager version: 14.1.2.1.0

resolved Vulnerabilities

Remote code execution vulnerability in Oracle Identity Manager and Oracle Web Services Manager (CVE-2026-21992)

vulnerability patches

Vulnerability patches have been made available in the latest update. please follow the instructions on the reference site to update to the latest version of the vulnerability patch.

CVE-2026-21992

Oracle Identity Manager versions: Check the reference site to apply the patch[1]
Oracle Web Services Manager versions: Check the reference site to apply the patch[1]

reference site

[1] Oracle Security Alert Advisory – CVE-2026-21992
https://www.oracle.com/security-alerts/alert-cve-2026-21992.html

Tags:
Previous Post