Ref# ADV2026_174 | Date: Mar 23rd 2026

---

Oracle published security updates highlighting vulnerabilities in the following products on March 19, 2026. It is recommended that you take the necessary precautions by ensuring your products are always updated.

• Oracle Identity Manager – versions 12.2.1.4.0 and 14.1.2.1.0
• Oracle Web Services Manager – versions 12.2.1.4.0 and 14.1.2.1.0

For more information on these updates, you can follow this URL:

• Oracle Security Alert Advisory – CVE-2026-21992
• Oracle Critical Patch Updates, Security Alerts and Bulletins

The Guyana National CIRT recommends that users and administrators review these updates and apply them where necessary.

PDF Download: Oracle Security Advisory

References

• Oracle Critical Patch Updates, Security Alerts and Bulletins. (n.d). Retrieved from Oracle. https://www.oracle.com/security-alerts/
• Oracle Security Alert Advisory – CVE-2026-21992. (n.d). Retrieved from Oracle. https://www.oracle.com/security-alerts/alert-cve-2026-21992.html
• Oracle security advisory. (March 20, 2026). Retrieved from Canadian Centre for Cyber Security. https://www.oracle.com/security-alerts/