CVE-2026-46978 – Oracle Solaris
“A critical operating system vulnerability can place the foundation of enterprise infrastructure at risk.”
This patch addresses two vulnerabilities in Oracle Solaris. The update includes one Critical severity vulnerability and one High severity vulnerability affecting Oracle's enterprise operating system platform, which supports critical servers, applications, and infrastructure services.
CVE-2026-46978 has a CVSS score of 10.0, which is Critical severity. CVE-2026-46914 has a CVSS score of 7.1, which is High severity.
No verified exploitation has been reported. The presence of a maximum-severity CVSS score of 10.0 makes this a high-priority update for organizations operating Oracle Solaris environments. Prompt remediation is recommended to reduce exposure across affected systems.
Key Details
- Affected Product
- Oracle Solaris
- Attack Vector
- Network
- Attack Complexity
- Low
- Privileges Required
- None
- User Interaction
- None
- CWE Classification
- CWE-284