CVE-2025-61882

Confirmed PUBLISHED

Vulnerability in the Oracle Concurrent Processing product of Oracle E-Business Suite (component: BI Publisher Integration). Supported versions...

Oracle Corporation · Oracle Concurrent Processing

4 days faster than CISA KEV

Exploited in the wild Active exploitation observed Used in malware PoC available

Recommended Action

Prioritize immediate patching and validate internet-facing exposure. Monitor for matching exploitation attempts in your environment.

Confidence
Confirmed
Exploitation Status
Active exploitation observed
Observed in Sensors
Yes
Attempts (30d)
276
Unique Attacker IPs
1
CISA KEV
In CISA KEV
CVSS / EPSS
9.8 Critical EPSS 99.7%

At a Glance

Vulnerability in the Oracle Concurrent Processing product of Oracle E-Business Suite (component: BI Publisher Integration). Supported versions that are affected are 12.2.3-12.2.14. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Concurrent Processing. Successful attacks of this vulnerability can result in takeover of Oracle Concurrent Processing. CVSS 3.1 Base Score 9.8 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H).

nuclei_scanner cisa malware
CVE Published
Oct 05, 2025
Exploitation Reported
Jun 01, 2026
CVSS
9.8 Critical
EPSS
99.7%
Remote Low complexity No user interaction Unauthenticated

Affected Versions

Vendor Product Version Status
Oracle Corporation
Oracle Concurrent Processing

12.2.3 to <= 12.2.14

Affected

CVE References

  • Oracle Advisory oracle.com · Vendor Advisory https://www.oracle.com/security-alerts/alert-cve-2025-61882.html

Recommended Actions

  • Prioritize immediate patching and validate internet-facing exposure. Monitor for matching exploitation attempts in your environment.
  • Review sensor telemetry for request paths, attacker IPs, and payload patterns that may inform detection and exposure validation.
  • Check enrichment artifacts for scanner coverage and available PoCs before rolling remediation validation.
  • Use the Pro API to automate enrichment, telemetry, and workflow delivery for VM, SOC, and CTI pipelines.