Oracle In-Memory Cost Mgmt DIC 12.2.1212.2.15 Unauth HTTPS Exploit
CVE-2026-46930 Published on June 16, 2026
Vulnerability in the Oracle In-Memory Cost Management for Discrete Industries product of Oracle E-Business Suite (component: Internal Operations). Supported versions that are affected are 12.2.12-12.2.15. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Oracle In-Memory Cost Management for Discrete Industries. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Oracle In-Memory Cost Management for Discrete Industries accessible data as well as unauthorized access to critical data or complete access to all Oracle In-Memory Cost Management for Discrete Industries accessible data. CVSS 3.1 Base Score 9.1 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N).
Vulnerability Analysis
CVE-2026-46930 is exploitable with network access, and does not require authorization privileges or user interaction. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to have a high impact on confidentiality and integrity, and no impact on availability.
Products Associated with CVE-2026-46930
Want to know whenever a new CVE is published for Oracle Memory Cost Management Discrete Industries? stack.watch will email you.
Affected Versions
Oracle Corporation Oracle In-Memory Cost Management for Discrete Industries:- Version 12.2.12, <= 12.2.15 is affected.