Unauthorized Access Vulnerability in JD Edwards EnterpriseOne Tools by Oracle
CVE-2026-46878
9.8CRITICAL
What is CVE-2026-46878?
A vulnerability exists in Oracle's JD Edwards EnterpriseOne Tools that allows an unauthenticated attacker to gain unauthorized access via JDENET. Supported versions from 9.2.0.0 to 9.2.26.2 are susceptible, enabling potential takeover of the JD Edwards system. This security flaw could lead to significant compromises in the system's confidentiality, integrity, and availability.
Affected Version(s)
JD Edwards EnterpriseOne Tools 9.2.0.0 <= 9.2.26.2