CVE-2026-46978 – Oracle Solaris

CVSS 10 CRITICAL Critical or Zero Day – Immediate Deployment

“A critical operating system vulnerability can place the foundation of enterprise infrastructure at risk.”

This patch addresses two vulnerabilities in Oracle Solaris. The update includes one Critical severity vulnerability and one High severity vulnerability affecting Oracle's enterprise operating system platform, which supports critical servers, applications, and infrastructure services.

CVE-2026-46978 has a CVSS score of 10.0, which is Critical severity. CVE-2026-46914 has a CVSS score of 7.1, which is High severity.

No verified exploitation has been reported. The presence of a maximum-severity CVSS score of 10.0 makes this a high-priority update for organizations operating Oracle Solaris environments. Prompt remediation is recommended to reduce exposure across affected systems.

Key Details

Affected Product
Oracle Solaris
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
CWE Classification
CWE-284
Patch this CVE on all your endpoints in under 5 minutes. First 200 endpoints are free forever, scale as needed.