Oracle User Management vulnerabilities
6 known vulnerabilities affecting oracle/user_management.
Total CVEs
6
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH2MEDIUM4
Vulnerabilities
Page 1 of 1
CVE-2025-30708HIGHCVSS 7.5≥ 12.2.4, ≤ 12.2.142025-04-15
CVE-2025-30708 [HIGH] CWE-732 CVE-2025-30708: Vulnerability in the Oracle User Management product of Oracle E-Business Suite (component: Search an
Vulnerability in the Oracle User Management product of Oracle E-Business Suite (component: Search and Register Users). Supported versions that are affected are 12.2.4-12.2.14. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle User Management. Successful attacks of this vulnerability can
nvd
CVE-2023-21997MEDIUMCVSS 4.3≥ 12.2.3, ≤ 12.2.122023-04-18
CVE-2023-21997 [MEDIUM] CVE-2023-21997: Vulnerability in the Oracle User Management product of Oracle E-Business Suite (component: Proxy Use
Vulnerability in the Oracle User Management product of Oracle E-Business Suite (component: Proxy User Delegation). Supported versions that are affected are 12.2.3-12.2.12. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle User Management. Successful attacks of this vulnerability can result in u
nvd
CVE-2022-21500HIGHCVSS 7.5PoC≥ 12.2.4, ≤ 12.2.112022-05-20
CVE-2022-21500 [HIGH] CVE-2022-21500: Vulnerability in Oracle E-Business Suite (component: Manage Proxies). The supported version that is
Vulnerability in Oracle E-Business Suite (component: Manage Proxies). The supported version that is affected is 12.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle E-Business Suite. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access
nvd
CVE-2021-2017MEDIUMCVSS 4.3≥ 12.2.3, ≤ 12.2.10v12.1.32021-01-20
CVE-2021-2017 [MEDIUM] CVE-2021-2017: Vulnerability in the Oracle User Management product of Oracle E-Business Suite (component: Proxy Use
Vulnerability in the Oracle User Management product of Oracle E-Business Suite (component: Proxy User Delegation). Supported versions that are affected are 12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle User Management. Successful attacks of this vulnerability can re
nvd
CVE-2018-3236MEDIUMCVSS 6.5v12.1.3v12.2.3+4 more2018-10-17
CVE-2018-3236 [MEDIUM] CVE-2018-3236: Vulnerability in the Oracle User Management component of Oracle E-Business Suite (subcomponent: Repo
Vulnerability in the Oracle User Management component of Oracle E-Business Suite (subcomponent: Reports). Supported versions that are affected are 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6 and 12.2.7. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle User Management. Successful attacks of this vuln
nvd
CVE-2018-2691MEDIUMCVSS 5.4v12.1.3v12.2.3+4 more2018-01-18
CVE-2018-2691 [MEDIUM] CVE-2018-2691: Vulnerability in the Oracle User Management component of Oracle E-Business Suite (subcomponent: Prox
Vulnerability in the Oracle User Management component of Oracle E-Business Suite (subcomponent: Proxy User Delegation). Supported versions that are affected are 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6 and 12.2.7. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle User Management. Successful attacks
nvd