NewsSecurity Vulnerabilities

Active exploitation of vulnerability affecting Oracle E-Business Suite (CVE-2025-61882)

CVE number = CVE-2025-61882

Oracle has published a security update to address an unauthenticated remote vulnerability (CVE-2025-61882) affecting Oracle E-Business Suite (EBS).

This vulnerability is being actively exploited and may allow remote code execution. 

CVE-2025-61882 is a vulnerability in the BI Publisher Integration component of Oracle Concurrent Processing within Oracle E-Business Suite.

An unauthenticated attacker can send specially crafted HTTP requests to the affected component resulting in full system compromise.

No user interaction is required. 

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.