Oracle has released patches for a security issue affecting Oracle Identity Manager that has received a rare 10 out of 10 score on the CVSSv3 bug severity scale. The software maker has remained tight-lipped about the issue and has not released any type of meaningful explanation. The issue is a “default account”” vulnerability
Source: