Attackers exploit critical Oracle E-Business Suite flaw weeks after patch, before public exploit code emerged
By
Carly Page
2d ago· 2 min readenNews
Summary
Attackers have been actively exploiting a critical vulnerability (CVE-2026-46817, CVSS 9.8) in Oracle E-Business Suite's Payments module just six weeks after Oracle released a patch. Researchers at Defused observed the first exploitation on June 27, targeting the Oracle Payments File Transmission component in releases 12.2.3 through 12.2.15. Notably, the attacks occurred before any public proof-of-concept exploit code was available, suggesting attackers reverse-engineered Oracle's patch to develop their own exploit.
Source
Key quotes
· 3 pulledAttackers have been caught exploiting a critical flaw in Oracle E-Business Suite's Payments module just six weeks after Oracle patched it – and before any public proof-of-concept exploit was available.
Researchers at Defused said they observed the first known exploitation of CVE-2026-46817 on June 27.
Attackers appear to have reverse-engineered Big Red's patch
Attackers appear to have reverse-engineered Big Red's patch
You might also wanna read
Oracle E-Business Suite Flaw CVE-2026-46817 Actively Exploited in the Wild
thehackernews.com·4d ago
WAF - WAF Release - 2025-10-30 - Emergency
Cloudflare·8mo ago
WAF - WAF Release - 2025-10-20
Cloudflare·8mo ago
WAF - WAF Release - 2025-10-06
Cloudflare·9mo ago
WAF - WAF Release - 2025-11-03
Cloudflare·8mo ago
WAF - WAF Release - 2025-06-09
Cloudflare·1y ago

Comments
Sign in to join the conversation.
No comments yet. Be the first.