CVE-2025-61884 - Geek Feed

Security
Tech News

CISA confirms hackers exploited Oracle E-Business Suite SSRF flaw

October 23, 2025October 23, 2025 geekfeed0Tagged 0day, Actively Exploited, CISA, CVE-2025-61882, CVE-2025-61884, Oracle, Oracle E-Business Suite, vulnerability, Zero-Day

CISA has confirmed that an Oracle E-Business Suite flaw tracked as CVE-2025-61884 is being exploited in attacks, adding it to its Known Exploited Vulnerabilities catalog. GeekFeed previously reported that CVE-2025-61884 is an unauthenticated server-side request forgery (SSRF) vulnerability in the Oracle Configurator runtime component, which was linked to a leaked exploit used in July attacks. The US cybersecurity […]

3 mins read