CVE-2026-46886
HIGH EPSS 32.1%
Published Jun 17, 20262w ago · Modified Jun 18, 20262w ago
8.8 CVSS 3.1
Published Jun 17, 2026 2w ago
Last Modified Jun 18, 2026 2w ago
Description
Vulnerability in the Siebel Apps - Marketing product of Oracle Siebel CRM (component: Marketing). Supported versions that are affected are 17.0-26.5. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Siebel Apps - Marketing. Successful attacks of this vulnerability can result in takeover of Siebel Apps - Marketing. CVSS 3.1 Base Score 8.8 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H).
CVSS Details
Base Score
Exploitability
Impact
Vector string
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Attack Vector Network
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability High
Threat Intelligence
EPSS Exploit Probability
32.1% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available
Weaknesses 1
CWE-284
Affected Products 1
| Vendor | Product | Version | Range |
|---|---|---|---|
| oracle | siebel_apps_-_marketing | * | ≥17.0 – ≤26.5 |
References 1
- oracle.com https://www.oracle.com/security-alerts/cspujun2026.html
Remediation
No remediation data recorded yet
Check vendor advisories and the NVD entry for patch availability.