Vulnerability in Oracle Subledger Accounting of Oracle E-Business Suite
CVE-2026-46958

7.5HIGH

Key Information:

Vendor: Oracle
Status: Oracle Subledger Accounting
Vendor: CVE Published:; 16 June 2026

What is CVE-2026-46958?

A vulnerability exists in the Oracle Subledger Accounting component of the Oracle E-Business Suite. This flaw allows a low-privileged attacker with network access through HTTP to compromise the Oracle Subledger Accounting module, potentially leading to unauthorized access. The affected versions range from 12.2.3 to 12.2.15. Remediation is strongly recommended to mitigate risks associated with this vulnerability.

Affected Version(s)

Oracle Subledger Accounting 12.2.3 <= 12.2.15

References

https://www.oracle.com/security-alerts/cspujun2026.html

vendor-advisory

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 16, 2026
Vulnerability Reserved
May 18, 2026

CVE-2026-46958 Data

JSON