CVE-2026-46911 – JD Edwards EnterpriseOne Project Costing

CVSS 9.6 CRITICAL Critical or Zero Day – Immediate Deployment

“Critical risks in project costing systems can threaten financial control and delivery confidence.”

This patch addresses CVE-2026-46911 in Oracle JD Edwards EnterpriseOne Project Costing. The vulnerability affects a business-critical ERP component used to manage project budgets, costs, accounting, and financial tracking across enterprise operations.

CVE-2026-46911 has a CVSS score of 9.6, which is Critical severity.

No verified exploitation has been reported. The Critical severity rating makes this a high-priority update for organizations using JD Edwards Project Costing, especially where project financials support regulated, contractual, or revenue-impacting work.

Key Details

Affected Product
Oracle Jd Edwards Enterpriseone Job Cost
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
CWE Classification
CWE-284
Patch this CVE on all your endpoints in under 5 minutes. First 200 endpoints are free forever, scale as needed.