CSIRTS // UNIFIED SECURITY ADVISORY FEEDSYS ● ONLINE · POWERED BY INTELFUSIONS.COM

NCSC-2026-0207 [1.00] [M/H] Vulnerabilities fixed in Oracle Fusion Middleware products

criticalCVE-2026-46788CVE-2026-46789CVE-2026-46790CVE-2026-46791CVE-2026-46792CVE-2026-46793
Oracle has fixed multiple vulnerabilities in various products within the Oracle Fusion Middleware suite, including WebLogic Server, WebCenter Content, WebCenter Sites, WebCenter Portal, WebCenter Enterprise Capture, Identity Manager, Identity Manager Connector, Access Manager, Coherence, Unified Directory, Virtual Directory, and Application Development Framework (ADF). The vulnerabilities affect various versions of Oracle Fusion Middleware products, where an attacker with network access via HTTP, HTTPS, LDAP, T3, IIOP, or RMI protocols, depending on the product and vulnerability, can perform unauthorized actions. These actions include full system compromise, remote code execution, unauthorized creation, modification, or deletion of critical data, and bypassing authentication. Some vulnerabilities require user interaction, while others can be exploited by unauthenticated attackers. The vulnerabilities impact the confidentiality, integrity, and availability of the affected systems. Specific components such as WebLogic Server Console, Identity Manager Connector, Access Manager Authentication Engine, and Coherence are also affected. The CVSS 3.1 base scores range from moderate (around 4.1) to critical (10.0), depending on the vulnerability and product. Exploitation can lead to complete takeover of systems and may impact other Oracle products that rely on the vulnerable components.

CSIRTS triage

What
Multiple vulnerabilities could allow unauthorized actions including full system compromise and remote code execution.
Who is affected
Users with network access to various Oracle Fusion Middleware products.
Urgency
Remediation is critical due to the severity and potential impact of the vulnerabilities.
Action
Users should apply the updates provided by Oracle.

AI-assisted analysis generated from the source advisory — verify against the original.

⚡ Watch Fusion Middleware

Get an email when a new Fusion Middleware advisory drops — max one per day, one-click unsubscribe.

Details

Source
NCSC-NL Advisories (NL · national-cert · site)
Severity
critical
Published
2026-06-17
Exploitation
Not in CISA KEV at last sync
Language
Machine-translated to English — verify against the original

Original advisory: https://advisories.ncsc.nl/advisory?id=NCSC-2026-0207

Exploitation outlook

EPSS (FIRST.org) estimates each CVE’s probability of exploitation in the next 30 days — here is the CSIRTS.com read on those numbers.

Referenced CVEs

CVECSIRTS overviewExternal
CVE-2026-46788coverage & exploitation statusNVD · CVE.org
CVE-2026-46789coverage & exploitation statusNVD · CVE.org
CVE-2026-46790coverage & exploitation statusNVD · CVE.org
CVE-2026-46791coverage & exploitation statusNVD · CVE.org
CVE-2026-46792coverage & exploitation statusNVD · CVE.org
CVE-2026-46793coverage & exploitation statusNVD · CVE.org
CVE-2026-46794coverage & exploitation statusNVD · CVE.org
CVE-2026-46795coverage & exploitation statusNVD · CVE.org
CVE-2026-46796coverage & exploitation statusNVD · CVE.org
CVE-2026-46797coverage & exploitation statusNVD · CVE.org
CVE-2026-46798coverage & exploitation statusNVD · CVE.org
CVE-2026-46799coverage & exploitation statusNVD · CVE.org
CVE-2026-46800coverage & exploitation statusNVD · CVE.org
CVE-2026-46801coverage & exploitation statusNVD · CVE.org
CVE-2026-46802coverage & exploitation statusNVD · CVE.org
CVE-2026-46803coverage & exploitation statusNVD · CVE.org
CVE-2026-46804coverage & exploitation statusNVD · CVE.org
CVE-2026-46805coverage & exploitation statusNVD · CVE.org
CVE-2026-46806coverage & exploitation statusNVD · CVE.org
CVE-2026-46807coverage & exploitation statusNVD · CVE.org
CVE-2026-46808coverage & exploitation statusNVD · CVE.org
CVE-2026-46809coverage & exploitation statusNVD · CVE.org
CVE-2026-46810coverage & exploitation statusNVD · CVE.org
CVE-2026-46812coverage & exploitation statusNVD · CVE.org
CVE-2026-46813coverage & exploitation statusNVD · CVE.org
CVE-2026-46814coverage & exploitation statusNVD · CVE.org
CVE-2026-46838coverage & exploitation statusNVD · CVE.org
CVE-2026-46844coverage & exploitation statusNVD · CVE.org
CVE-2026-46845coverage & exploitation statusNVD · CVE.org
CVE-2026-46846coverage & exploitation statusNVD · CVE.org
CVE-2026-46847coverage & exploitation statusNVD · CVE.org
CVE-2026-46848coverage & exploitation statusNVD · CVE.org
CVE-2026-35258coverage & exploitation statusNVD · CVE.org
CVE-2026-35259coverage & exploitation statusNVD · CVE.org
CVE-2026-35261coverage & exploitation statusNVD · CVE.org
CVE-2026-35262coverage & exploitation statusNVD · CVE.org
CVE-2026-35263coverage & exploitation statusNVD · CVE.org
CVE-2026-35265coverage & exploitation statusNVD · CVE.org
CVE-2026-35267coverage & exploitation statusNVD · CVE.org
CVE-2026-35268coverage & exploitation statusNVD · CVE.org
CVE-2026-35269coverage & exploitation statusNVD · CVE.org
CVE-2026-35270coverage & exploitation statusNVD · CVE.org
CVE-2026-35280coverage & exploitation statusNVD · CVE.org
CVE-2026-35281coverage & exploitation statusNVD · CVE.org
CVE-2026-35282coverage & exploitation statusNVD · CVE.org
CVE-2026-35283coverage & exploitation statusNVD · CVE.org
CVE-2026-35284coverage & exploitation statusNVD · CVE.org
CVE-2026-35285coverage & exploitation statusNVD · CVE.org

+12 more CVEs referenced in this advisory.

Recent advisories for Oracle Fusion Middleware

A cluster of recent advisories against the same product widens the attack surface — attackers routinely chain freshly published CVEs on one product, so review these together.

More from NCSC-NL Advisories