CVE-2026-46901 – Oracle Enterprise Command Center Framework

CVSS 9.9 CRITICAL Critical or Zero Day – Immediate Deployment

“Critical dashboard framework risks can expose the business systems leaders depend on every day.”

This patch addresses eight vulnerabilities in Oracle Enterprise Command Center Framework. The update includes seven Critical severity vulnerabilities and one High severity vulnerability affecting a framework used to deliver enterprise dashboards, analytics, and command center views across Oracle business applications.

CVE-2026-46895 has a CVSS score of 9.9, which is Critical severity. CVE-2026-46896 has a CVSS score of 9.1, which is Critical severity. CVE-2026-46897 has a CVSS score of 9.9, which is Critical severity. CVE-2026-46899 has a CVSS score of 9.6, which is Critical severity. CVE-2026-46900 has a CVSS score of 9.9, which is Critical severity. CVE-2026-46901 has a CVSS score of 9.9, which is Critical severity. CVE-2026-46902 has a CVSS score of 9.8, which is Critical severity. CVE-2026-46898 has a CVSS score of 8.1, which is High severity.

No verified exploitation has been reported. The number and severity of these vulnerabilities make this a priority update for Oracle enterprise application environments.

Key Details

Affected Product
Oracle Enterprise Command Center Framework
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
CWE Classification
CWE-269
Patch this CVE on all your endpoints in under 5 minutes. First 200 endpoints are free forever, scale as needed.