Description
Vulnerability in the Oracle WebCenter Enterprise Capture product of Oracle Fusion Middleware (component: Client Bundle). Supported versions that are affected are 12.2.1.4.0 and 14.1.2.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via RMI to compromise Oracle WebCenter Enterprise Capture. While the vulnerability is in Oracle WebCenter Enterprise Capture, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in takeover of Oracle WebCenter Enterprise Capture. CVSS 3.1 Base Score 10.0 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H).
Published: 2026-06-16
Score: 10 Critical
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

An unauthenticated attacker who can reach the Oracle WebCenter Enterprise Capture application through Java RMI can exploit a flaw in the Client Bundle component, acquiring full control of the target system. The vulnerability exposes the integrity, confidentiality, and availability of the application, resulting in a complete takeover. Although the issue originates in WebCenter Enterprise Capture, successful exploitation may also affect other components of the Oracle Fusion Middleware stack due to the scope change stated by the vendor.

Affected Systems

The vulnerability affects Oracle WebCenter Enterprise Capture versions 12.2.1.4.0 and 14.1.2.0.0. The RMI interface must be reachable over the network for the exploit to succeed. No other products or versions are listed as impacted in the current data set.

Risk and Exploitability

The CVSS 3.1 base score of 10.0 indicates the maximum possible impact for confidentiality, integrity, and availability. The EPSS score is less than 1%, suggesting that overall exploitation probability in the wild is currently low, and the vulnerability is not yet included in the CISA KEV catalog. Nevertheless, the attack vector is network based via RMI, and the lack of authentication makes the exploit trivial for an adversary who can reach the exposed port. Inferred from the description, the likely path involves an unauthenticated RMI request that triggers code execution within the application process.

Generated by OpenCVE AI on June 18, 2026 at 22:31 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the Oracle security patch for WebCenter Enterprise Capture that addresses CVE‑2026‑46781
  • If a patch is not yet available, block or restrict inbound RMI traffic to the application using firewalls or network segmentation
  • Disable the RMI Client Bundle service or enforce authentication to prevent unauthenticated remote access

Generated by OpenCVE AI on June 18, 2026 at 22:31 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Thu, 18 Jun 2026 23:00:00 +0000

Type Values Removed Values Added
Title Unauthenticated Remote Code Execution via Java RMI in Oracle WebCenter Enterprise Capture

Thu, 18 Jun 2026 21:15:00 +0000

Type Values Removed Values Added
Title Unauthenticated RMI Exploit Leading to Full Compromise of Oracle WebCenter Enterprise Capture
Weaknesses CWE-20
CWE-918

Thu, 18 Jun 2026 04:45:00 +0000

Type Values Removed Values Added
Title Unauthenticated RMI Exploit Leading to Full Compromise of Oracle WebCenter Enterprise Capture
Weaknesses CWE-20
CWE-306
CWE-918
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Tue, 16 Jun 2026 20:45:00 +0000

Type Values Removed Values Added
Description Vulnerability in the Oracle WebCenter Enterprise Capture product of Oracle Fusion Middleware (component: Client Bundle). Supported versions that are affected are 12.2.1.4.0 and 14.1.2.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via RMI to compromise Oracle WebCenter Enterprise Capture. While the vulnerability is in Oracle WebCenter Enterprise Capture, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in takeover of Oracle WebCenter Enterprise Capture. CVSS 3.1 Base Score 10.0 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H).
First Time appeared Oracle
Oracle webcenter Enterprise Capture
CPEs cpe:2.3:a:oracle:webcenter_enterprise_capture:12.2.1.4.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:webcenter_enterprise_capture:14.1.2.0.0:*:*:*:*:*:*:*
Vendors & Products Oracle
Oracle webcenter Enterprise Capture
References
Metrics cvssV3_1

{'score': 10, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H'}


Subscriptions

Oracle Webcenter Enterprise Capture
cve-icon MITRE

Status: PUBLISHED

Assigner: oracle

Published:

Updated: 2026-06-17T15:33:11.878Z

Reserved: 2026-05-18T15:55:10.297Z

Link: CVE-2026-46781

cve-icon Vulnrichment

Updated: 2026-06-17T15:14:29.526Z

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-18T22:45:16Z

Weaknesses
  • CWE-306

    Missing Authentication for Critical Function