CVE-2026-46944 – Oracle iSupport

CVSS 9.1 CRITICAL Critical or Zero Day – Immediate Deployment

“When customer support platforms face critical vulnerabilities, both service operations and customer trust are at risk.”

This patch addresses three vulnerabilities in Oracle iSupport. The update covers CVE-2026-46944, CVE-2026-46945, and CVE-2026-46946, affecting Oracle's self-service customer support platform used for case management, service requests, knowledge access, and customer engagement.

CVE-2026-46944 has a CVSS score of 9.1, which is Critical severity. CVE-2026-46945 has a CVSS score of 9.1, which is Critical severity. CVE-2026-46946 has a CVSS score of 9.1, which is Critical severity.

No verified exploitation has been reported. The presence of multiple Critical severity vulnerabilities within a customer-facing support platform makes this a high-priority update for organizations relying on Oracle iSupport to deliver customer service operations.

Key Details

Affected Product
Oracle Isupport
Attack Vector
Network
Attack Complexity
Low
Privileges Required
High
User Interaction
None
CWE Classification
CWE-284
Patch this CVE on all your endpoints in under 5 minutes. First 200 endpoints are free forever, scale as needed.