All Topics
All Topics
Technology
Technology
AI
AI
Business
Business
Entertainment
Entertainment
News
News
Programming
Programming
Security
Security
Science
Science
Design
Design
Environment
Environment
Finance
Finance
Crypto
Crypto
Politics
Politics
Sports
Sports
Education
Education
Gaming
Gaming
Art
Art
Music
Music
Health
Health
Books
Books
Food
Food
Travel
Travel
Personal
Personal
Bluesky
Twitter

Active exploitation begins for critical Oracle E-Business Suite vulnerability CVE-2026-46817

4d ago· 1 min readenNews

Summary

A critical unauthenticated remote code execution vulnerability (CVE-2026-46817, CVSS 9.9) in Oracle E-Business Suite's Payments component is now being actively exploited in the wild. The flaw, fixed in Oracle's late May Critical Security Patch Update, allows attackers to take over Oracle Payments over HTTP without authentication. Security firm Defused detected initial exploitation attempts hitting EBS honeypots over the weekend, with no prior public proof-of-concept available. Organizations are urged to apply patches promptly.

Source

bskyActive exploitation begins for critical Oracle E-Business Suite vulnerability CVE-2026-46817briefly.co

Key quotes

· 4 pulled
CVE-2026-46817 has a CVSS score of 9.8 and affects the File Transmissions component within the Payments product of Oracle E-Business Suite.
Unauthenticated attackers can exploit the flaw over HTTP to compromise Payments, and successful exploitation can result in takeover of Oracle Payments.
Defused observed initial exploitation attempts hitting EBS honeypots over the weekend, with no prior in-the-wild reports and no public proof-of-concept available.
Organizations are advised to apply Oracle patches promptly because EBS and other Oracle products are frequently targeted in attack campaigns.
Snippet from the RSS feed
CVE-2026-46817 has a CVSS score of 9.8 and affects the File Transmissions component within the Payments product of Oracle E-Business Suite. Oracle states unauthenticated attackers can exploit the flaw over HTTP to compromise Payments, and successful explo

You might also wanna read

Comments

Sign in to join the conversation.

No comments yet. Be the first.