The Hacker News

Oracle Patches Critical CVE-2026-21992 Enabling Unauthenticated RCE in Identity Manager

Oracle fixes CVE-2026-21992 (CVSS 9.8) flaw enabling unauthenticated RCE via HTTP, risking full system compromise.

Oracle pushes emergency fix for critical Identity Manager RCE flaw

Oracle has released an out-of-band security update to fix a critical unauthenticated remote code execution vulnerability in Identity Manager and Web Services Manager tracked as CVE-2026-21992.

This $50 Billion AI Bet Is Either Oracle's Masterstroke or Its Biggest Mistake

Oracle’s revenue has been soaring during the AI boom. The company, a database management specialist, has greatly expanded and ...

How a 2.85% price error triggered $27M in liquidations on Aave

A 2.85% pricing mismatch in wstETH triggered about $27 million in liquidations on Aave, revealing how oracle configurations and risk parameters can affect DeFi lending markets.