—–BEGIN PGP SIGNED MESSAGE—–

Hash: SHA256

Multiple Vulnerabilities in Oracle Products

Indian – Computer Emergency Response Team (https://www.cert-in.org.in)

Severity Rating: Critical

Software Affected

Oracle Communications

Oracle E-Business Suite

Oracle Enterprise Manager

Oracle Fusion Middleware

Oracle JD Edwards EnterpriseOne

Oracle MySQL

Oracle PeopleSoft

Oracle Siebel CRM

Oracle Supply Chain Products

Oracle Solaris

Oracle VM VirtualBox

For complete list of affected products refer to the oracle advisory:

https://www.oracle.com/security-alerts/cspujun2026.html

Overview

Multiple vulnerabilities have been reported in various Oracle products which could allow a remote attacker to execute arbitrary code, gain elevated access, trigger denial of service condition, gain unauthorized access to sensitive information, manipulate data and bypass security restriction on the targeted system.

Target Audience:

Individuals and organisational users of the above-mentioned Oracle products.

Risk Assessment:

High risk of arbitrary code execution, unauthorized access, denial of service, data manipulation, information disclosure and privilege escalation.

Impact Assessment:

Potential for unauthorized access to sensitive information, denial of service, data manipulation, privilege escalation and full system compromise.

Description

Oracle products are used for several applications including enterprise-level data management, cloud solutions, software development, and business applications. They are employed across a wide range of sectors, including finance, healthcare, manufacturing, government, and retail, among others.

Multiple vulnerabilities have been reported in various components of Oracle products.

Successful exploitation of these vulnerabilities could allow an attacker to execute arbitrary code, gain elevated access, trigger denial of service condition, gain unauthorized access to sensitive information, manipulate data and bypass security restrictions on the targeted system.

For complete list of affected products, CVEs, workarounds and solutions, refer to the oracle advisory:

https://www.oracle.com/security-alerts/cspujun2026.html

Solution

Apply the security updates released by Microsoft:  

https://www.oracle.com/security-alerts/cspujun2026.html

Vendor Information

Oracle

https://www.oracle.com/security-alerts/cspujun2026.html

References

Oracle

https://www.oracle.com/security-alerts/cspujun2026.html

– —

Thanks and Regards,

CERT-In

Incident Response Help Desk

e-mail: incident@cert-in.org.in

Phone: +91-11-22902657

Toll Free Number: 1800-11-4949

Toll Free Fax : 1800-11-6969

Web: http://www.cert-in.org.in

PGP Fingerprint: A768 083E 4475 5725 B81A A379 2156 C0C0 B620 D0B4

PGP Key information:

https://www.cert-in.org.in/s2cMainServlet?pageid=CONTACTUS

Postal address:

Indian Computer Emergency Response Team (CERT-In)

Ministry of Electronics and Information Technology

Government of India

Electronics Niketan

6, C.G.O. Complex

New Delhi-110 003

—–BEGIN PGP SIGNATURE—–

iQIzBAEBCAAdFiEE6r4Iam/Ey0c/KakL3jCgcSdcys8FAmo0DGMACgkQ3jCgcSdc

ys8L0hAAqlqZ4EqbYWYDAc9CWPC0BCGtMdb3RKWAs5TaL4wlNmSpNzJ/vjmZym3L

6zSfOdihnoYdB8opBTFsY1uSsXeiRV7oLukNfMmN3Yp6lXb/VeknIZx5Cnpdq6GP

AgQJ41O/Yh9YYQP0Z0K7E+ekucXfQHH6Vy7KUKgNO+5VoWH59YTnKQyEFGwzzAox

XHBw6MPw393vZhLEE5o75e/6l7IM6+VUtJEpVINT49khnnKTr8PJ0OafiTP5FRwn

uqyceV5u/lCqFTxV/h7jA8AgC7mwhaqCjO8pkUEeh8aH/Omxr8DQeV5DTYEi4Its

0jT9GnKu2xf8PPMp0uul+XuDkk4yCNt9xU7HMLHZqlzBQQ55goIFLApLFkVQ+zbv

R66fHGXPfgfYc/Z73DupsmqgyN+orvFUNNAhyik5+wX+7Yh4dHNYpUHuXqtC8NSi

+WLb+CqtmGzIZuVp11r7Cu5bQodtDQwlBcnPvR47XM1/1tOFF86lClCqFJejz+4K

P1gQNWXcbqNA8I3B7FRxRPEFu09S7688ECAHhvlqbkMpw9jMa7GN+hef0BoAMaVb

GatLn3+Bns273ram6XlVCJOWfdeeX2/K57v4KmuPc4Rbb3zk4lOdHfUVSEWbfMDu

EmRRqFNyEvJgdriwKhGHgaV7vP8Y1Dpa5hqUwSXFz2MyxmNCS7A=

=hU3p

—–END PGP SIGNATURE—–