Oracle · Oracle Rest Data Services · CVE-2026-46839
**Name of the Vulnerable Software and Affected Versions**
Oracle REST Data Services versions 24.2.0 through 26.1.0
**Description**
An issue in the Core component allows a low privileged attacker with network access via HTTPS to compromise the system. Successful exploitation can result in a complete takeover of the service and may significantly impact additional products due to a scope change.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.