Known Vulnerabilities for User Management by Oracle
Listed below are 6 of the newest known vulnerabilities associated with "User Management" by "Oracle".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-60092 json | AVideo (Meet plugin) through commit e8d6119f3cb1b849149906efeb0a41fc024f59f8 contains a stored cross-site scripting vulnerabi... | Not Provided | 2026-07-08 | 2026-07-08 |
| CVE-2026-59854 json | SiYuan is an open-source personal knowledge management system. Prior to 3.7.1, POST /api/file/globalCopyFiles accepts attacke... | Not Provided | 2026-07-09 | 2026-07-10 |
| CVE-2026-59190 json | grav-plugin-admin is an HTML user interface that provides a way to configure Grav and create and modify pages. In 1.10.52 and... | Not Provided | 2026-07-10 | 2026-07-10 |
| CVE-2026-58583 json | FluxInk (formerly Sunia SPB Peripheral) Color Management Driver (TcnPeripheral64.sys) 1.0.7.2 allows local privilege escalati... | Not Provided | 2026-07-07 | 2026-07-07 |
| CVE-2026-58374 json | In hostapd before 2.12, a missing bounds check in AP-mode Wi-Fi 7 (IEEE 802.11be) Multi-Link Operation (MLO) association requ... | Not Provided | 2026-06-30 | 2026-06-30 |
| CVE-2026-58176 json | RuoYi-Vue-Plus through 5.6.2, fixed in commit 88d03d9, exposes workflow task management endpoints under /workflow/task (FlwTa... | Not Provided | 2026-06-30 | 2026-07-01 |
| CVE-2026-58054 json | MyBB 1.8.40 does not restrict which usergroup a limited Admin Control Panel user may assign when creating or editing users; t... | Not Provided | 2026-06-28 | 2026-06-29 |
| CVE-2026-57867 json | MicroRealEstate allows adversaries to bypass authentication due to a lack of token state management. This would permit advers... | Not Provided | 2026-07-07 | 2026-07-07 |
| CVE-2026-57214 json | RabbitMQ is a messaging and streaming broker. Prior to 4.2.5, the RabbitMQ management UI renders the x-internal-purpose queue... | Not Provided | 2026-07-10 | 2026-07-10 |
| CVE-2026-56808 json | DGM3103SCT provided by AVTECH Security Corporation contains an OS command injection vulnerability, which may lead to arbitrar... | Not Provided | 2026-06-30 | 2026-06-30 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Oracle | User Management | 12.2.7 | |||
| Application | Oracle | User Management | 12.2.6 | |||
| Application | Oracle | User Management | 12.2.5 | |||
| Application | Oracle | User Management | 12.2.4 | |||
| Application | Oracle | User Management | 12.2.3 | |||
| Application | Oracle | User Management | 12.2.10 | |||
| Application | Oracle | User Management | 12.1.3 |