Oracle User Management — known CVE vulnerabilities
Every CVE whose affected-product data names Oracle User Management, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2022-21500 — CVSS 7.5 (high): Vulnerability in Oracle E-Business Suite (component: Manage Proxies). The supported version that is affected is 12.2. Easily exploitable…
CVE-2025-30708 — CVSS 7.5 (high): Vulnerability in the Oracle User Management product of Oracle E-Business Suite (component: Search and Register Users). Supported versions…
CVE-2018-3236 — CVSS 6.5 (medium): Vulnerability in the Oracle User Management component of Oracle E-Business Suite (subcomponent: Reports). Supported versions that are…
CVE-2018-2691 — CVSS 5.4 (medium): Vulnerability in the Oracle User Management component of Oracle E-Business Suite (subcomponent: Proxy User Delegation). Supported versions…
CVE-2021-2017 — CVSS 4.3 (medium): Vulnerability in the Oracle User Management product of Oracle E-Business Suite (component: Proxy User Delegation). Supported versions that…
CVE-2023-21997 — CVSS 4.3 (medium): Vulnerability in the Oracle User Management product of Oracle E-Business Suite (component: Proxy User Delegation). Supported versions that…
CVE-2026-22014 — CVSS 3.8 (low): Vulnerability in the Oracle User Management product of Oracle E-Business Suite (component: Workflow and Business Events). Supported…