CVE-2026-46909

Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards component: Enterprise Infrastructure Security. Supported versions that are affected are 9.2.0.0-9.2.26.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise JD...

The vulnerability of the Web Runtime SEC component of the JD Edwards EnterpriseOne Tools system for resource management allows a perpetrator to gain access to read, modify, and delete files.

The vulnerability of the Web Runtime SEC component of the JD Edwards EnterpriseOne Tools system for resource management involves deficiencies in the authentication mechanism. Exploiting this vulnerability could allow an attacker to gain access to read, modify, and delete files...

The vulnerability of the Monitoring and Diagnostics component of the JD Edwards EnterpriseOne Tools system allows a perpetrator to gain full control over the application.

The vulnerability of the Monitoring and Diagnostics component of the JD Edwards EnterpriseOne Tools system is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain full control over the application using the HTTP protoc...