Oracle released its June 2026 Critical Patch Update with 245 security patches affecting multiple Oracle products and third-party components. The vulnerabilities addressed could allow denial-of-service attacks, sensitive information disclosure, data manipulation, and unauthorized access, prompting guidance for enterprises to apply updates after completing testing.
The update includes two maximum-severity flaws rated CVSS 10.0: CVE-2026-35308 in Oracle Coherence, described as a remotely exploitable centralized takeover issue, and CVE-2026-46978 in Oracle Solaris, described as a data manipulation vulnerability. Both flaws are reported as exploitable over the network with low attack complexity, requiring no privileges and no user interaction, increasing the urgency for organizations running affected systems to patch quickly.

Mallory correlates global threat intelligence with your attack surface — know if you’re exposed before adversaries strike.
1 event from the most recent confirmed update back to the earliest known activity.
On June 18, 2026, Oracle released its June 2026 Critical Patch Update with 245 new security patches across Oracle products and third-party components. The update addressed vulnerabilities that could allow denial of service, sensitive information disclosure, data manipulation, or unauthorized access, including CVE-2026-35308 in Oracle Coherence and CVE-2026-46978 in Oracle Solaris.
Vulnerabilities, threat actors, malware, products, organizations, and breaches Mallory has linked to this story.
2 references tracked. Mallory keeps watching after this page renders.
Map indicators from this story to your assets and identify affected systems in minutes.
Every observed campaign, victim, and pivot linked to actors named in this story.
Malware, exploits, and IOCs connected to the activity described here.
YARA, Sigma, and Snort rules deployed to your SIEM as soon as they’re published.
Get matching new stories delivered to your team as they break — not the next morning.
Ask questions about this story and take action on the answers.