CVE-2026-46864 – Oracle Enterprise Manager Base Platform
“When the platform used to manage enterprise systems is exposed, the impact can reach every managed asset.”
This patch addresses multiple vulnerabilities in Oracle Enterprise Manager Base Platform. The update includes nine Critical severity vulnerabilities and three High severity vulnerabilities affecting Oracle's centralized management platform used to monitor, administer, and control enterprise infrastructure and applications.
CVE-2026-46832 has a CVSS score of 9.9, which is Critical severity. CVE-2026-46852 has a CVSS score of 9.9, which is Critical severity. CVE-2026-46853 has a CVSS score of 9.6, which is Critical severity. CVE-2026-46854 has a CVSS score of 9.9, which is Critical severity. CVE-2026-46855 has a CVSS score of 9.9, which is Critical severity. CVE-2026-46856 has a CVSS score of 9.6, which is Critical severity. CVE-2026-46857 has a CVSS score of 9.8, which is Critical severity. CVE-2026-46872 has a CVSS score of 9.0, which is Critical severity. CVE-2026-46875 has a CVSS score of 9.1, which is Critical severity.
CVE-2026-46864 has a CVSS score of 8.8, which is High severity. CVE-2026-46865 has a CVSS score of 8.2, which is High severity. CVE-2026-46866 has a CVSS score of 8.2, which is High severity.
No verified exploitation has been reported. The concentration of Critical severity vulnerabilities within a centralized management platform significantly increases organizational risk and makes this update a high priority for affected environments.
Key Details
- Affected Product
- Oracle Enterprise Manager Base Platform
- Attack Vector
- Network
- Attack Complexity
- Low
- Privileges Required
- Low
- User Interaction
- None
- CWE Classification
- CWE-284