Dossier
Defused Cyber
Coverage of Defused Cyber in the Nexus archive.
- Oracle E-Business Suite Flaw CVE-2026-46817 Actively Exploited in the Wild
A critical security flaw in Oracle E-Business Suite, tracked as CVE-2026-46817 (CVSS score: 9.8), is being actively exploited in the wild. The vulnerability involves improper privilege management and authentication in Oracle Payments, allowing attackers to compromise affected instances.
- Attackers Exploit Three Fortinet FortiSandbox Flaws, One Patched Last Week
Attackers are exploiting three security vulnerabilities in Fortinet FortiSandbox, including a path traversal flaw (CVE-2026-39813) with a CVSS score of 9.1. Threat intelligence firm Defused Cyber reported observing active exploitation of these flaws over the past 24 hours, with one vulnerability patched last week.