CVE-2026-46890

Vulnerability in the Siebel Apps - Marketing product of Oracle Siebel CRM (component: Marketing). Supported versions that are affected are 17.0-26.5. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Siebel Apps - Marketing. Successful attacks of this vulnerability can result in takeover of Siebel Apps - Marketing. CVSS 3.1 Base Score 9.8 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H).
References
Configurations

Configuration 1 (hide)

cpe:2.3:a:oracle:siebel_apps_-_marketing:*:*:*:*:*:*:*:*

History

18 Jun 2026, 21:58

Type Values Removed Values Added
New CVE

Information

Published : 2026-06-17 10:54

Updated : 2026-06-18 21:58


NVD link : CVE-2026-46890

Mitre link : CVE-2026-46890

CVE.ORG link : CVE-2026-46890


JSON object : View

Products Affected

oracle

  • siebel_apps_-_marketing
CWE
CWE-284

Improper Access Control

CWE-287

Improper Authentication

CWE-306

Missing Authentication for Critical Function