CVE-2026-46956

N/A

Vulnerability in the Oracle Property Manager product of Oracle E-Business Suite (component: Internal Operations). Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle Property Manager. Successful attacks of this vulnerability can result in takeover of Oracle Property Manager. CVSS 3.1 Base Score 7.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H).

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

N/A

Oracle Property Manager 权限许可和访问控制问题漏洞

Oracle Property Manager是美国Oracle公司的一款用于简化和自动化企业的租赁管理、资产追踪和空间分配软件。 Oracle Property Manager 12.2.3版本至12.2.15版本存在权限许可和访问控制问题漏洞，该漏洞源于Internal Operations组件问题，可能导致高权限攻击者通过网络访问，成功接管Oracle Property Manager。

N/A

N/A