Vulnerability in Oracle iSupport Product by Oracle
CVE-2026-46945

9.1CRITICAL

Key Information:

Vendor: Oracle
Status: Oracle Isupport
Vendor: CVE Published:; 16 June 2026

What is CVE-2026-46945?

A vulnerability exists in the Oracle iSupport component of Oracle E-Business Suite that allows a high-privileged attacker with network access to compromise the system. The affected versions range from 12.2.3 to 12.2.15, and while the vulnerability is localized to Oracle iSupport, it poses a risk of significant impact to connected products. Successful exploitation of this vulnerability can result in complete takeover of iSupport functionalities and threaten the overall integrity and confidentiality of the impacted system.

Affected Version(s)

Oracle iSupport 12.2.3 <= 12.2.15

References

https://www.oracle.com/security-alerts/cspujun2026.html

vendor-advisory

CVSS V3.1

Score:

9.1

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 16, 2026
Vulnerability Reserved
May 18, 2026

CVE-2026-46945 Data

JSON