Skip to main content

Jd Edwards Enterpriseone Project Costing

1 CVEs product

Monthly

CVE-2026-46911 CRITICAL Act Now

Cross-product compromise in Oracle JD Edwards EnterpriseOne Project Costing 9.2 (Job Costing component) allows a low-privileged attacker with network access via the JDENET protocol to read, modify, or delete all data accessible to the Project Costing module and to impact additional adjacent products through a scope change. Oracle rates this 9.6 (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N) and there is no public exploit identified at time of analysis, with the issue tracked as EUVD-2026-37230.

Authentication Bypass Oracle Jd Edwards Enterpriseone Project Costing
NVD
CVSS 3.1
9.6
EPSS
0.4%
EPSS 0% CVSS 9.6
CRITICAL Act Now

Cross-product compromise in Oracle JD Edwards EnterpriseOne Project Costing 9.2 (Job Costing component) allows a low-privileged attacker with network access via the JDENET protocol to read, modify, or delete all data accessible to the Project Costing module and to impact additional adjacent products through a scope change. Oracle rates this 9.6 (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N) and there is no public exploit identified at time of analysis, with the issue tracked as EUVD-2026-37230.

Authentication Bypass Oracle Jd Edwards Enterpriseone Project Costing
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy