Latest Oracle Identity Manager vulnerability: CVE-2026-21992 #
Oracle has disclosed a vulnerability in specific versions of its Identify Manager and Web Services Manager products, contained within the Oracle Fusion Middleware suite that, when exploited, may allow a remote, unauthenticated adversary to takeover vulnerable Oracle Identity Manager and Web Services Manager installations. This vulnerability has been designated CVE-2026-21992 and has been rated critical with a CVSS score of 9.8.
The following versions are affected
- Oracle Identity Manager versions 12.2.1.4.0 and 14.1.2.1.0
What is Oracle Identity Manager? #
Oracle Identity Manager is a complete security platform that manages user lifecycles and provides secure access to enterprise resources. It automates user management across cloud and on-premises systems, enables secure sign-on with features like multi-factor authentication.
What is the impact? #
Successful exploitation of this vulnerability can result in takeover of Oracle Identity Manager and Oracle Web Services Manager.
Are updates or workarounds available? #
Users are encouraged to upgrade affected versions of Oracle Identity Manager and Oracle Web Services Manager to the latest patched version as quickly as possible. Oracle has included patching instructions on their website.
How to find potentially vulnerable systems with runZero #
From the Software Inventory, use the following query to locate potentially impacted assets:
vendor:=Oracle AND (product:"Identity Manager" OR product:"Web Services Manager")November 2025: Oracle Identity Manager vulnerability: CVE-2025-61757 #
Oracle has disclosed a vulnerability in certain versions of its Identify Manager contained within the Oracle Fusion Middleware suite that, when exploited, may allow a remote, unauthenticated adversary to achieve arbitrary remote code execution (RCE). This vulnerability has been designated CVE-2025-61757 and has been rated critical with a CVSS score of 9.8.
There is evidence that this vulnerability is being actively exploited in the wild.
The following versions are affected
- Oracle Identity Manager versions 12.2.1.4.0 and 14.1.2.1.0
What is the impact? #
Successful exploitation of these vulnerabilities would allow an adversary to execute arbitrary commands on the vulnerable host, potentially leading to complete system compromise.
Are updates or workarounds available? #
Users are encouraged to upgrade affected versions of Oracle Identity Manager to the latest patched version as quickly as possible.
How to find potentially vulnerable systems with runZero #
From the Software Inventory, use the following query to locate potentially impacted assets:
vendor:="Oracle" product:="Identity Manager"
