Oracle Issues Emergency Out-of-Cycle Patch for Code Smuggling Vulnerability in Identity Manager and Web Services Manager

Oracle released an out-of-cycle emergency update for Oracle Identity Manager and Web Services Manager to address a code smuggling vulnerability. The update was issued outside the regular patch cycle, indicating the severity of the flaw. No specific CVE ID, technical details about the exploit mechanism, or affected versions were disclosed in the notice. The vulnerability allows attackers to potentially execute unauthorized code, though the exact impact and attack vectors remain unspecified. The patch aims to mitigate risks associated with this security gap in the identity and access management products.