CVE-2026-46866

high

Description

The vulnerability exists due to an easily exploitable validation flaw in the Agent Next Gen component of Oracle Enterprise Manager Base Platform that allows unauthenticated attackers over HTTPS to corrupt database table structures or trigger permanent system denial of service hangs.

References

https://www.oracle.com/security-alerts/cspujun2026.html

Details

Source: Mitre, NVD

Published: 2026-06-18

Risk Information

CVSS v2

Base Score: 8.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:C

Severity: High

CVSS v3

Base Score: 8.2

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H