ZDNet

Oracle Access Manager security bug so serious it let anyone access protected data

A bug that Oracle recently patched broke the main functionality of Oracle Access Manager (OAM), which should only give authorized users access to protected enterprise data. OAM provides an ...

CISA warns Oracle Identity Manager RCE flaw is being actively exploited

The U.S. Cybersecurity & Infrastructure Security Agency (CISA) is warning government agencies to patch an Oracle Identity ...
Threat Post

Vulnerabilities Expose Oracle OAM 10g to Remote Session Hijacking

Version 10g of Oracle Access Manager suffers from vulnerabilities that could allow an attacker to hijack sessions. Oracle’s next quarterly Critical Patch Update is slated for July 18, but two ...