CVE-2026-46864 – Oracle Enterprise Manager Base Platform

CVSS 8.8 IMPORTANT Critical or Zero Day – Immediate Deployment

“When the platform used to manage enterprise systems is exposed, the impact can reach every managed asset.”

This patch addresses multiple vulnerabilities in Oracle Enterprise Manager Base Platform. The update includes nine Critical severity vulnerabilities and three High severity vulnerabilities affecting Oracle's centralized management platform used to monitor, administer, and control enterprise infrastructure and applications.

CVE-2026-46832 has a CVSS score of 9.9, which is Critical severity. CVE-2026-46852 has a CVSS score of 9.9, which is Critical severity. CVE-2026-46853 has a CVSS score of 9.6, which is Critical severity. CVE-2026-46854 has a CVSS score of 9.9, which is Critical severity. CVE-2026-46855 has a CVSS score of 9.9, which is Critical severity. CVE-2026-46856 has a CVSS score of 9.6, which is Critical severity. CVE-2026-46857 has a CVSS score of 9.8, which is Critical severity. CVE-2026-46872 has a CVSS score of 9.0, which is Critical severity. CVE-2026-46875 has a CVSS score of 9.1, which is Critical severity.

CVE-2026-46864 has a CVSS score of 8.8, which is High severity. CVE-2026-46865 has a CVSS score of 8.2, which is High severity. CVE-2026-46866 has a CVSS score of 8.2, which is High severity.

No verified exploitation has been reported. The concentration of Critical severity vulnerabilities within a centralized management platform significantly increases organizational risk and makes this update a high priority for affected environments.

Key Details

Affected Product
Oracle Enterprise Manager Base Platform
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
CWE Classification
CWE-284
Patch this CVE on all your endpoints in under 5 minutes. First 200 endpoints are free forever, scale as needed.