threat
engine
.sh
Back
·
··:··
Home
/
Product
/
oracle user management
Product
oracle user management
9 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2026-22014
>= 12.2.7 and <= 12.2.15
Vulnerability in the Oracle User Management product of Oracle E-Business Suite (component: Workflow and Business Events). Support
3.8
LOW
CVE-2025-30708
>= 12.2.4 and <= 12.2.14
Vulnerability in the Oracle User Management product of Oracle E-Business Suite (component: Search and Register Users). Supported
7.5
HIGH
CVE-2023-36662
>= 2.2.2 and <= 2.15.24
The TechTime User Management components for Atlassian products allow stored XSS on the Bulk User Actions page. This affects User M
5.4
MEDIUM
CVE-2023-21997
>= 12.2.3 and <= 12.2.12
Vulnerability in the Oracle User Management product of Oracle E-Business Suite (component: Proxy User Delegation). Supported vers
4.3
MEDIUM
CVE-2022-21500
>= 12.2.4 and <= 12.2.11
Vulnerability in Oracle E-Business Suite (component: Manage Proxies). The supported version that is affected is 12.2. Easily explo
7.5
HIGH
CVE-2021-2017
>= 12.2.3 and <= 12.2.10
Vulnerability in the Oracle User Management product of Oracle E-Business Suite (component: Proxy User Delegation). Supported versi
4.3
MEDIUM
CVE-2018-18419
all versions
Stored XSS has been discovered in the upload section of ARDAWAN.COM User Management 1.1, as demonstrated by a .jpg filename to the
5.4
MEDIUM
CVE-2018-3236
all versions
Vulnerability in the Oracle User Management component of Oracle E-Business Suite (subcomponent: Reports). Supported versions that
6.5
MEDIUM
CVE-2018-2691
all versions
Vulnerability in the Oracle User Management component of Oracle E-Business Suite (subcomponent: Proxy User Delegation). Supported
5.4
MEDIUM
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin