Multiple reports say attackers are actively exploiting a critical vulnerability in Oracle E-Business Suite, specifically affecting the Payments component. The issue is tracked as CVE-2026-46817 and has a CVSS score of 9.8, with sources describing it as an authentication and privilege-management weakness that can enable takeover of susceptible Oracle E-Business Suite instances. SecurityWeek, Bleeping Computer, and Help Net Security all cite threat intelligence firm Defused as the basis for their reporting and describe exploitation activity beginning around the end of June 2026. Help Net Security adds timing context from Defused’s observations, stating that decoy systems recorded the first in-the-wild exploitation on 27 June 2026, about six weeks after Oracle’s May 2026 patch. The outlets also report that the activity occurs before any public proof-of-concept was available. Overall, the coverage agrees that exploitation attempts involve unauthenticated access paths and can lead to compromise of affected environments running the vulnerable Payments functionality.
CVE-2026-46817 in Oracle E-Business Suite Payments Exploited in the Wild
Multiple reports say attackers are actively exploiting a critical vulnerability in Oracle E-Business Suite, specifically affecting the Payments component. The issue is tracked as CVE-2026-46817 and ha...
- CVE-2026-46817 is a critical (CVSS 9.8) vulnerability affecting Oracle E-Business Suite, specifically the Payments module.
- Threat intelligence firm Defused reports exploitation attempts occurring in the wild.
- Reports describe the flaw as involving improper privilege management and authentication, enabling instance takeover.
- At least one source ties first observed in-the-wild exploitation to 27 June 2026, about six weeks after Oracle’s May 2026 patch.
- Sources say activity was detected before any public proof-of-concept was released.
Exploitation attempts targeting a critical vulnerability (CVE-2026-46817) in Oracle Payments, the payment-processing module within Oracle’s E-Business Suite (EBS), have been spotted over the weekend, threat intelligence company Defused warned on Monday. The detected exploitation attempts (Source: Defused) “On 27 June 2026 our Oracle E-Business Suite decoys recorded the first in-the-wild exploitation of CVE-2026-46817 — roughly six weeks after Oracle’s May 2026 patch and before any public proof-of-concept existed,” the company said. “The activity was a … More → The post Oracle E-Business Suite Payments flaw under attack (CVE-2026-46817) appeared first on Help Net Security.
1 hour agoThe critical-severity defect allows unauthenticated attackers to take over the E-Business Suite’s Payments product. The post Exploitation of Recent Oracle E-Business Suite Vulnerability Begins appeared first on SecurityWeek.
4 hours agoA critical security flaw impacting Oracle E-Business Suite has come under active exploitation in the wild, according to Defused Cyber. The vulnerability, tracked as CVE-2026-46817 (CVSS score: 9.8), refers to an improper privilege management and authentication flaw in Oracle Payments that could be abused to take over susceptible instances. "Easily exploitable vulnerability allows
10 hours agoAttackers have begun exploiting a critical vulnerability (CVE-2026-46817) in the Oracle E-Business Suite (EBS) financial application, according to threat intelligence company Defused. [...]
1 day ago
Sinn Féin urges Stormont Speaker Edwin Poots to step aside over Jeffrey Donaldson claims
Sinn Féin calls on Stormont Speaker Edwin Poots to step aside while the DUP investigates claims involving Jeffrey Donald...
U.S. Supreme Court rejects Trump’s bid to restrict birthright citizenship
The U.S. Supreme Court rules against President Donald Trump’s effort to limit birthright citizenship. Multiple outlets r...
Mumbai local stabbing: GRP recovers alleged knife after viral video tips
Mumbai police have recovered a knife allegedly used in a fatal stabbing on a local train, following leads tied to a vira...