CVE-2026-46892 – JD Edwards EnterpriseOne Human Resources Management

CVSS 9.1 CRITICAL Critical or Zero Day – Immediate Deployment

“When HR systems face critical vulnerabilities, sensitive employee data and business operations are both at stake.”

This patch addresses CVE-2026-46892 in Oracle JD Edwards EnterpriseOne Human Resources Management. The vulnerability affects a core HR application used to manage employee information, workforce processes, and human resources operations within enterprise environments.

CVE-2026-46892 has a CVSS score of 9.1, which is Critical severity.

No verified exploitation has been reported. However, the Critical severity rating indicates a significant risk to affected environments and highlights the importance of applying the update to protect HR-related systems and sensitive workforce data.

Key Details

Affected Product
Oracle Jd Edwards Enterpriseone Human Resources Management
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
CWE Classification
CWE-284
Patch this CVE on all your endpoints in under 5 minutes. First 200 endpoints are free forever, scale as needed.