CVE-2026-46817: the unauthenticated Oracle EBS file read that leaks your payment secrets
CVE-2026-46817 lets an attacker who can merely reach your Oracle E-Business Suite over HTTP read files off the server -- no login, no user interaction. The bug lives in the Oracle Payments (iPayment)…