CISA Warns of Actively Exploited Critical Oracle Identity Manager Zero-Day Vulnerability

The Hacker News

November 22, 2025 at 6:45 AM

Actively Exploited

Summary

CISA has identified a critical security vulnerability in Oracle Identity Manager, classified as CVE-2025-61757, which is actively being exploited. This vulnerability involves missing authentication for a critical function, posing significant security risks.

Impact

Oracle Identity Manager

In the Wild

Yes

Timeline

Newly disclosed

Remediation

Not specified

Read Original Article