What is GHSA-hgjj-98r8-4m7p?

GHSA-hgjj-98r8-4m7p is a security advisory published by GitHub Security Advisories with High severity. Vulnerability in the Oracle Payroll product of Oracle E-Business Suite (component: Self Service...

Which CVE IDs does GHSA-hgjj-98r8-4m7p cover?

GHSA-hgjj-98r8-4m7p covers the following CVE IDs: CVE-2026-46827. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

What is the CVSS v3 score of GHSA-hgjj-98r8-4m7p?

GHSA-hgjj-98r8-4m7p has a CVSS v3 base score of 8.8, published by GitHub Security Advisories.

GHSA-hgjj-98r8-4m7pHighCVSS 8.8

Vulnerability in the Oracle Payroll product of Oracle E-Business Suite (component: Self Service...

Vendor

GitHub Security Advisories

Published

May 28, 2026

Last Modified

May 28, 2026

🔗 CVE IDs covered (1)

CVE-2026-46827 →

📋 Description

Vulnerability in the Oracle Payroll product of Oracle E-Business Suite (component: Self Service Manager). Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Payroll. Successful attacks of this vulnerability can result in takeover of Oracle Payroll. CVSS 3.1 Base Score 8.8 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H).

🔗 References (3)

https://nvd.nist.gov/vuln/detail/CVE-2026-46827
https://www.oracle.com/security-alerts/cspumay2026.html
https://github.com/advisories/GHSA-hgjj-98r8-4m7p