Serial number: AV26-042
Date: January 21, 2026
Updated: January 23, 2026
On January 20, 2026, Oracle published a security advisory to address vulnerabilities in multiple products.
Update 1
On January 21, 2026, a proof of concept (PoC) for the vulnerability CVE-2026-21962 became publicly available.
CVE-2026-21962 is a vulnerability in the Oracle HTTP Server, Oracle Weblogic Server Proxy Plug-in product of Oracle Fusion Middleware which may allow a remote attacker to obtain unauthorized access.
The Cyber Centre encourages users and administrators to review the provided web link and apply the necessary updates.