CVE-2026-46900 – Oracle Enterprise Command Center Framework
“Critical dashboard framework risks can expose the business systems leaders depend on every day.”
This patch addresses eight vulnerabilities in Oracle Enterprise Command Center Framework. The update includes seven Critical severity vulnerabilities and one High severity vulnerability affecting a framework used to deliver enterprise dashboards, analytics, and command center views across Oracle business applications.
CVE-2026-46895 has a CVSS score of 9.9, which is Critical severity. CVE-2026-46896 has a CVSS score of 9.1, which is Critical severity. CVE-2026-46897 has a CVSS score of 9.9, which is Critical severity. CVE-2026-46899 has a CVSS score of 9.6, which is Critical severity. CVE-2026-46900 has a CVSS score of 9.9, which is Critical severity. CVE-2026-46901 has a CVSS score of 9.9, which is Critical severity. CVE-2026-46902 has a CVSS score of 9.8, which is Critical severity. CVE-2026-46898 has a CVSS score of 8.1, which is High severity.
No verified exploitation has been reported. The number and severity of these vulnerabilities make this a priority update for Oracle enterprise application environments.
Key Details
- Affected Product
- Oracle Enterprise Command Center Framework
- Attack Vector
- Network
- Attack Complexity
- Low
- Privileges Required
- Low
- User Interaction
- None
- CWE Classification
- CWE-269