Vulnerability in Oracle Siebel CRM Affecting Cloud Applications
CVE-2026-46926

8.8HIGH

Key Information:

Vendor: Oracle
Status: Siebel Crm Cloud Applications
Vendor: CVE Published:; 16 June 2026

What is CVE-2026-46926?

A vulnerability exists in Oracle Siebel CRM Cloud Applications that allows a low-privileged attacker to exploit the system after gaining logon access. This security flaw can lead to significant impacts not just within Siebel CRM, but may also extend to additional associated products, potentially leading to unauthorized takeover and compromise of sensitive data. Users of versions 17.0 through 26.5 are particularly at risk, emphasizing the need for immediate action to mitigate this exposure. For more detailed information, please refer to the official Oracle advisory.

Affected Version(s)

Siebel CRM Cloud Applications 17.0 <= 26.5

References

https://www.oracle.com/security-alerts/cspujun2026.html

vendor-advisory

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 16, 2026
Vulnerability Reserved
May 18, 2026

CVE-2026-46926 Data

JSON