Critical Oracle Identity Manager Flaw: Unauthenticated Data Compromise
The National Vulnerability Database has disclosed CVE-2026-34286, a critical vulnerability impacting the Oracle Identity Manager Connector product within Oracle Fusion Middleware (component: Core). Specifically, version 12.2.1.4.0 is affected.
This flaw is easily exploitable over HTTPS by an unauthenticated attacker, requiring no user interaction. Successful exploitation grants unauthorized creation, deletion, or modification access to critical data, or even all data accessible via Oracle Identity Manager Connector. It also allows complete unauthorized access to sensitive information, making it a severe integrity and confidentiality risk.
Rated with a CVSS 3.1 Base Score of 9.1 (Critical), the attack vector is network-based, with low attack complexity and no required privileges or user interaction. Defenders must prioritize patching this vulnerability to prevent significant data compromise and unauthorized access within their identity management infrastructure.
What This Means For You
- If your organization uses Oracle Identity Manager Connector version 12.2.1.4.0, you are directly exposed to unauthenticated, remote data compromise. This isn't theoretical; an attacker can walk in and manipulate or steal your identity data. Prioritize patching this CVE immediately. Review all identity management logs for unusual activity or unauthorized changes, especially around your Oracle Identity Manager Connector instances.
Related ATT&CK Techniques
🛡️ Detection Rules
3 rules · 6 SIEM formats3 detection rules auto-generated for this incident, mapped to MITRE ATT&CK. Sigma YAML is free — export to any SIEM format via the Intel Bot.
CVE-2026-34286 - Unauthenticated Oracle Identity Manager Connector Data Compromise
Indicators of Compromise
| ID | Type | Indicator |
|---|---|---|
| CVE-2026-34286 | Auth Bypass | Oracle Identity Manager Connector product, version 12.2.1.4.0 |
| CVE-2026-34286 | Information Disclosure | Oracle Identity Manager Connector product, version 12.2.1.4.0 |
| CVE-2026-34286 | Data Manipulation | Oracle Identity Manager Connector product, version 12.2.1.4.0 |
Written by SCW Vulnerability Desk
Source & Attribution
| Source Platform | NVD |
| Channel | National Vulnerability Database |
| Published | April 22, 2026 at 00:16 UTC |
This content was AI-rewritten and enriched by Shimi's Cyber World based on the original source. All intellectual property rights remain with the original author.
Believe this infringes your rights? Submit a takedown request.
Related Posts
HKUDS OpenHarness Default Config Exposes Systems (CVE-2026-6823)
CVE-2026-6823 — HKUDS OpenHarness prior to PR #147 remediation contains an insecure default configuration vulnerability where remote channels inherit allow_from = ["*"] permitting arbitrary remote...
Critical AVideo XSS Vulnerability Exposes Admin Settings
CVE-2026-40925 — WWBN AVideo is an open source video platform. In versions 29.0 and prior, `objects/configurationUpdate.json.php` (also routed via `/updateConfig`) persists dozens of global site...
Critical RCE in AVideo YPTSocket Plugin: Unauthenticated Account Takeover
CVE-2026-40911 — WWBN AVideo is an open source video platform. In versions 29.0 and prior, the YPTSocket plugin's WebSocket server relays attacker-supplied JSON message bodies...