CVE-2026-46945 – Oracle iSupport
“When customer support platforms face critical vulnerabilities, both service operations and customer trust are at risk.”
This patch addresses three vulnerabilities in Oracle iSupport. The update covers CVE-2026-46944, CVE-2026-46945, and CVE-2026-46946, affecting Oracle's self-service customer support platform used for case management, service requests, knowledge access, and customer engagement.
CVE-2026-46944 has a CVSS score of 9.1, which is Critical severity. CVE-2026-46945 has a CVSS score of 9.1, which is Critical severity. CVE-2026-46946 has a CVSS score of 9.1, which is Critical severity.
No verified exploitation has been reported. The presence of multiple Critical severity vulnerabilities within a customer-facing support platform makes this a high-priority update for organizations relying on Oracle iSupport to deliver customer service operations.
Key Details
- Affected Product
- Oracle Isupport
- Attack Vector
- Network
- Attack Complexity
- Low
- Privileges Required
- High
- User Interaction
- None
- CWE Classification
- CWE-284