CVE-2025-61882
Published Oct 5, 2025
Last updated an hour ago
AI description
CVE-2025-61882 is a vulnerability in the Oracle E-Business Suite, specifically within the Oracle Concurrent Processing component. It can be exploited remotely without authentication, meaning an attacker doesn't need a username or password to exploit it. The vulnerability affects versions 12.2.3 through 12.2.14 of the Oracle E-Business Suite. Successful exploitation of CVE-2025-61882 can lead to remote code execution. Oracle recommends applying the updates provided in the security alert as soon as possible and emphasizes the importance of maintaining actively supported versions and installing all critical security patches promptly. Applying the October 2023 Critical Patch Update is a prerequisite for implementing the fixes.
- Description
- Vulnerability in the Oracle Concurrent Processing product of Oracle E-Business Suite (component: BI Publisher Integration). Supported versions that are affected are 12.2.3-12.2.14. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Concurrent Processing. Successful attacks of this vulnerability can result in takeover of Oracle Concurrent Processing. CVSS 3.1 Base Score 9.8 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H).
- Source
- secalert_us@oracle.com
- NVD status
- Modified
- Products
- concurrent_processing
CVSS 3.1
- Type
- Secondary
- Base score
- 9.8
- Impact score
- 5.9
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
- Severity
- CRITICAL
Data from CISA
- Vulnerability name
- Oracle E-Business Suite Unspecified Vulnerability
- Exploit added on
- Oct 6, 2025
- Exploit action due
- Oct 27, 2025
- Required action
- Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
- 134c704f-9b21-4f2e-91b3-4a467353bcc0
- CWE-22
Hype score is a measure of social media activity compared against trending CVEs from the past 12 months. Max score 100.
- Hype score
71
Security Bulletin: Oracle E-Business Suite RCE Vulnerability – CVE-2025-61882 (CVSS 9.8) enables unauthenticated RCE via BI Publisher integration. Linked to Cl0p exploitation. Patch immediately per Oracle’s alert. #ThreatIntel #RedLeggCTI... https://t.co/ATqhOGtLgD
@RedLegg
6 Oct 2025
15 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🔥 𝐅𝐁𝐈, 𝐔𝐊 𝐠𝐨𝐯’𝐭 𝐮𝐫𝐠𝐞 𝐨𝐫𝐠𝐬 𝐭𝐨 𝐩𝐚𝐭𝐜𝐡 𝐎𝐫𝐚𝐜𝐥𝐞 𝐄-𝐁𝐮𝐬𝐢𝐧𝐞𝐬𝐬 𝐯𝐮𝐥𝐧 𝐚𝐟𝐭𝐞𝐫 𝐚𝐥𝐥𝐞𝐠𝐞𝐝 𝐂𝐥𝐨𝐩 𝐜𝐚𝐦𝐩𝐚
@PurpleOps_io
6 Oct 2025
22 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Nice - CrowdStrike’s blog contains some logs and IOCs CrowdStrike Identifies Campaign Targeting Oracle E-Business Suite via Zero-Day Vulnerability (now tracked as CVE-2025-61882) https://t.co/HSAsFUYJYs https://t.co/6Gh6giI6VW
@cyb3rops
6 Oct 2025
7997 Impressions
17 Retweets
86 Likes
28 Bookmarks
0 Replies
2 Quotes
Active exploitation of vulnerability affecting Oracle E-Business Suite (CVE-2025-61882) #CVE202561882 #CyberSecurity #Oracle #OracleEBusinessSuite https://t.co/kkYd1C9twj https://t.co/aJ3vNTThMR
@SystemTek_UK
6 Oct 2025
5 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CrowdStrike is tracking a mass exploitation campaign almost certainly leveraging a novel zero-day vulnerability — now tracked as CVE-2025-61882 — targeting Oracle E-Business Suite (EBS) applications for the purposes of data exfiltration. https://t.co/BCkSDEfkOZ
@Adam_Cyber
6 Oct 2025
5540 Impressions
19 Retweets
55 Likes
24 Bookmarks
0 Replies
0 Quotes
The watchTowr Labs team is back, providing our full analysis of the Oracle E-Business Suite Pre-Auth RCE exploit chain (CVE-2025-61882). Enjoy with us (or cry, your choice..) https://t.co/ffDKb723N6
@watchtowrcyber
6 Oct 2025
6216 Impressions
30 Retweets
79 Likes
24 Bookmarks
2 Replies
3 Quotes
The watchTowr team has broken down the Oracle EBS unauth RCE exploit chain (tagged as CVE-2025-61882). Important to note: it is not one vulnerability, but multiple chained together. As always, we'll share more soon. https://t.co/d2L6Fq0SnD
@watchtowrcyber
6 Oct 2025
15745 Impressions
54 Retweets
213 Likes
70 Bookmarks
4 Replies
0 Quotes
CVE-2025-61882: Critical 0day in Oracle E-Business Suite exploited in-the-wild https://t.co/7G5KuJe1K9 A critical vulnerability, identified as CVE-2025-61882 with a CVSS score of 9.8, has been discovered in Oracle's Concurrent Processing product within Oracle E-Business Suite
@f1tym1
6 Oct 2025
3 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Cyberstorm hits global networks & fraud rings in the last hour 🌐⚠️ Key intel below: 🛠️ Oracle patches critical zero-day (CVE-2025-61882) exploited by Clop ransomware gang for remote code execution on E-Business Suite/WebLogic servers. Immediate update vital to pr
@np_cyber_news
6 Oct 2025
1 Impression
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 CVE-2025-61882 – Critical Oracle EBS RCE exploited! 💥 No auth needed. Linked to #Cl0p ransomware. 📂 #PoC leaked on #Telegram, patch now. 🔗: https://t.co/CENlOQIfFN
@socradar
6 Oct 2025
11 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
The flaw (CVE-2025-61882) is remotely exploitable without authentication. Oracle Patches E-Business Suite Zero-Day Amid Clop Extortion Attacks https://t.co/XvYei7xAT2 #decipher #deciphersec
@DecipherSec
6 Oct 2025
150 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-61882: Frequently Asked Questions About Oracle E-Business Suite (EBS) Zero-Day and Associated Vulnerabilities https://t.co/YT4B0BEads https://t.co/0FHodVZph6
@ggrubamn
6 Oct 2025
108 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Check this out ASAP if you are running Oracle E-Business Suite to fix a zero day CVE-2025-61882, CVSS v3.1 Base Score 9.8(!!), RCE without authentication. Oracle E-Business Suite利用者は下記至急ご参照されたし。 https://t.co/JjIoYXSHkS #Oracle #CVE-2025-61882 #Z
@s_adachi
6 Oct 2025
29 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
#CVE-2025-61882 PoC leak is real. The exploit requires outbound connections to a malicious server. 🤔🤔🤔 nuclei detect for ssrf: https://t.co/Hcy6r1LOEh https://t.co/0Y3eqSm77v
@tuo4n8
6 Oct 2025
294 Impressions
0 Retweets
3 Likes
0 Bookmarks
1 Reply
0 Quotes
On 10/4/25, #Oracle published an advisory & patch for CVE-2025-61882 – an RCE vuln affecting the Oracle Concurrent Processing product within E-Business Suite (EBS). Claims of exploitation in-the-wild at the hands of #Cl0p are supported. More in our blog: https://t.co/Di
@rapid7
6 Oct 2025
1006 Impressions
1 Retweet
1 Like
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-61882: Frequently Asked Questions About Oracle E-Business Suite (EBS) Zero-Day and Associated Vulnerabilities https://t.co/lwsAAxunIA https://t.co/zZr5FGj1lq
@EAlexStark
6 Oct 2025
10 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Oracle has released security updates to address a critical vulnerability (CVE-2025-61882) in the Oracle E‑Business Suite. Users and administrators of affected products are advised to update to the latest versions immediately. https://t.co/cDkFaCJDoe
@keinternetsec
6 Oct 2025
6 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Oracle rushes emergency patch for critical E-Business Suite flaw (CVE-2025-61882) exploited by Cl0p in data theft attacks. Update now! 🚨 https://t.co/4p7WbAXVqZ... #Oracle #Cybersecurity #Cl0p #Vulnerability #PatchNow
@0xT3chn0m4nc3r
6 Oct 2025
13 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚀 $ORCL $286.14 (–0.89%) pre-market ⚡️ Range $284.00–$294.64 Zero-day CVE-2025-61882 exploited by Cl0p; $18B debt for AI expansion; strong long-term growth potential 🔥 💬 Group flagged 3 stocks up 200%—Access exclusive market analysis 🔗https://t.co/MDKtikn
@Michal_Pod1
6 Oct 2025
82 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Oracle Scrambles to Fix Zero-Day Exploited by Cl0p Hackers! 🚨 Oracle hit by real-world zero-day exploit! Cl0p ransomware gang just used a critical flaw CVE-2025-61882 to steal data from Oracle E-Business Suite servers. Full Story 👉https://t.co/Qx9tCMhrrN https://t.co/qGTu2O
@CSec88
6 Oct 2025
211 Impressions
0 Retweets
2 Likes
0 Bookmarks
0 Replies
0 Quotes
IOCにある「oracle_ebs_nday_exploit_poc_scattered_lapsus_retard-cl0p_hunters」という名前も気になるところですね(cl0pだけでなく) 🚨🚨🚨 『This vulnerability is remotely exploitable without authentication,』 Oracle Security Alert Advisory - CVE
@autumn_good_35
6 Oct 2025
22 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Cl0p exploits Oracle E-Business Suite zero-day in data theft, extortion campaign (CVE-2025-61882) https://t.co/etzahdgc6s #HelpNetSecurity #Cybersecurity https://t.co/mrNgo3ousQ
@PoseidonTPA
6 Oct 2025
6 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
IMMEDIATE ALERT: Patch Oracle E-Business Suite NOW for Critical RCE Flaw CVE-2025-61882 (CVSS 9.8) Read the full Report on - https://t.co/PFeZ2pQNMT https://t.co/7KeETJVMVB
@Iambivash007
6 Oct 2025
14 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Critical vulnerability CVE-2025-61882 affects Oracle E-Business Suite versions 12.2.3 to 12.2.14 allowing remote code execution without authentication. This flaw is rated with a CVSS v3.1 base score of 9.8 impacting the BI Publisher Integration component
@Tudorel92659164
6 Oct 2025
74 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
The NCSC is encouraging UK organisations to take immediate action to mitigate a vulnerability (CVE-2025-61882) affecting Oracle E-Business Suite. More info here👇 https://t.co/VW7pwaKDna
@NCSC
6 Oct 2025
8067 Impressions
14 Retweets
37 Likes
4 Bookmarks
2 Replies
4 Quotes
🚨 Urgent: Oracle rushing out patch for critical CVE-2025-61882! Cl0p ransomware exploited it for data theft. Check your systems NOW. #CyberSecurity #OraclePatch https://t.co/0sMmbvZd5t
@xcybersecnews
6 Oct 2025
46 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 Oracle E-Business Suite zero-day (CVE-2025-61882) is under active attack by Cl0p ransomware! CRITICAL RCE in BI Publishing Integration—patch now to prevent data theft and extortion. https://t.co/3oPlh9k2oq #... https://t.co/dxOfAp0fR6
@offseq
6 Oct 2025
211 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Oracle shipped an emergency patch for CVE-2025-61882 after Cl0p exploited E-Business Suite for data theft. CVSS 9.8 with unauthenticated RCE. Patch now and review logs for past access using Oracle’s IoCs. https://t.co/EVk22ZwWav
@Prevent_Cyber
6 Oct 2025
83 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
Oracle under attack! Hackers from the Clop ransomware group exploited a new zero-day flaw (CVE-2025-61882) in Oracle’s E-Business Suite, giving them full remote acces. https://t.co/TndCp5hgF5 #Oracle #DataBreach #Ransomware #TechNews #InfoSec #CVE2025 #OracleEBS #DigitalSafet
@QuickTidings
6 Oct 2025
87 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
Oracle Rushes Patch for CVE-2025-61882 After Cl0p Exploited It in Data Theft Attacks Oracle has released an emergency update to address a critical security flaw in its E-Business Suite #oracle #rushes #patch #cve202561882 #after #cl0p #exploited #data #theft #attacks https://t.co
@DConsultinguk
6 Oct 2025
3 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-61882 in Oracle E-Business Suite. This vulnerability is remotely exploitable without authentication, i.e., it may be exploited over a network without the need for a username and password. https://t.co/aLn8RUsrrx
@johntroony
6 Oct 2025
3 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Oracle patches EBS zero-day exploited in Clop data theft attacks Oracle is warning about a critical E-Business Suite zero-day vulnerability tracked as CVE-2025-61882… https://t.co/3MvxOwNz3K https://t.co/23y6UMH9Oq
@DConsultinguk
6 Oct 2025
12 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Oracle Security Alert Advisory - CVE-2025-61882 https://t.co/zb3M6HB1fY #patchmanagement
@eyalestrin
6 Oct 2025
20 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
0-Day Alert 🚨 Actor exploiting Oracle E-Business Suite zero-day (CVE-2025-61882). Exploitation has been confirmed and patches are available now. No PoC observed as of today. We have added an Oracle E-Business honeypot for Defused Free users for a limited time - take https:
@DefusedCyber
6 Oct 2025
7832 Impressions
20 Retweets
63 Likes
14 Bookmarks
1 Reply
2 Quotes
Oracle Rushes Patch for CVE-2025-61882 After Cl0p Exploited It in Data Theft Attacks learn More: https://t.co/tfXEJXXFQN
@ArishtiSecurity
6 Oct 2025
1 Impression
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Oracle patches CVE-2025-61882, a critical zero-day in E-Business Suite (12.2.3-12.2.14) exploited by Clop ransomware for remote code execution and data theft. CVSS 9.8, active large-scale attacks ongoing. #OracleFix #RansomwareAttack #USA https://t.co/XuPKFNfVs3
@TweetThreatNews
6 Oct 2025
45 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Oracle Security Alert Advisory - CVE-2025-61882 Oracle strongly recommends that customers apply the updates provided by this Security Alert as soon as possible. This vulnerability is remotely exploitable without authentication! https://t.co/l5xYjDR4pU https://t.co/TVXObMciXa
@_CYOPS
6 Oct 2025
69 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Oracle Rushes Patch for CVE-2025-61882 After Cl0p Exploited It in Data Theft Attacks. Oracle has released an emergency update to address a critical security flaw in its E-Business Suite that it said has been exploited... https://t.co/5EsHvx5v2Z #InceptusSecure #UnderOurProtection
@Inceptus3
6 Oct 2025
50 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
The Hacker News - Oracle Rushes Patch for CVE-2025-61882 After Cl0p Exploited It in Data Theft Attacks https://t.co/DbIkNEbPIX
@buzz_sec
6 Oct 2025
41 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 Urgent: Oracle patched a critical E-Business Suite flaw (CVE-2025-61882) actively exploited by Cl0p in data theft attacks. Secure your systems now! https://t.co/9UqS5diniA #Oracle #Cybersecurity #Cl0p #CVE202561882 #EBusinessSuite
@0xT3chn0m4nc3r
6 Oct 2025
8 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
📌 أصدرت Oracle تحديثًا طارئًا لمعالجة ثغرة أمنية خطيرة في مجموعة E-Business الخاصة بها، المعروفة باسم CVE-2025-61882، والتي تم استغلالها في هجمات سرقة بيانات Cl0p. الثغر
@Cybercachear
6 Oct 2025
6 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Oracle Rushes Patch for CVE-2025-61882 After Cl0p Exploited It in Data Theft Attacks https://t.co/leBDM5JDVU https://t.co/qcZEaiVEWR
@evanderburg
6 Oct 2025
152 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Oracle Rushes Patch for CVE-2025-61882 After Cl0p Exploited It in Data Theft Attacks https://t.co/vZpdDxOxsF https://t.co/RIws83HsnM
@RigneySec
6 Oct 2025
7 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-61882, vulnerbilidad critica Oracle E-Business Suite (9.6), vulnerabilidad de inyección SQL que permite a un atacante remoto y no autenticado ejecutar comandos SQL ,enviando una peticiones HTTP especificas. https://t.co/fwMJltD3x9 https://t.co/ePWAKFFfoA
@antonio_taboada
6 Oct 2025
338 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
🚨 Oracle just rushed a patch for CVE-2025-61882 — a 9.8 critical flaw in E-Business Suite already exploited by Cl0p in live data theft attacks. The zero-day lets attackers seize control without a username or password. Experts warn many may already be breached. Details her
@TheHackersNews
6 Oct 2025
86936 Impressions
100 Retweets
282 Likes
68 Bookmarks
9 Replies
10 Quotes
OracleはE-Business Suiteの「Concurrent Processing」内の脆弱性CVE-2025-61882に緊急パッチを公開した。認証不要でリモートからコード実行可能な欠陥で、実際にClopランサムウェア集団が攻撃に利用している。
@yousukezan
6 Oct 2025
997 Impressions
2 Retweets
3 Likes
0 Bookmarks
0 Replies
0 Quotes
Quick and Dirty Analysis of Possible Oracle E-Business Suite Exploit Script (CVE-2025-61882), (Mon, Oct 6th) https://t.co/1Ddqujlkcd #SANS #Cybersecurity https://t.co/y5P9PlyKKx
@PoseidonTPA
6 Oct 2025
14 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
⚠️Oracle、Clopのデータ窃取攻撃で悪用されたEBSのゼロデイを修正:CVE-2025-61882 〜サイバーセキュリティ週末の話題〜 https://t.co/4HKUqDAEiH #セキュリティ #インテリジェンス #OSINT
@MachinaRecord
6 Oct 2025
83 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Oracle has issued a warning about a critical E-Business Suite zero-day vulnerability, CVE-2025-61882, which allows unauthenticated remote code execution and is actively being exploited in Clop data theft attacks. #CyberSecurity https://t.co/MZH4C3pr7b
@Cyber_O51NT
6 Oct 2025
1747 Impressions
4 Retweets
13 Likes
4 Bookmarks
0 Replies
0 Quotes
⚠️Oracle issued an emergency fix for a a critical E-Business Suite zero-day flaw tracked as CVE-2025-61882 that was exploited in Clop data theft attacks. 🔥The flaw is a critical unauthenticated RCE flaw. An exploit is publicly available to open a reverse shell. 🚨Pat
@BleepinComputer
6 Oct 2025
18758 Impressions
73 Retweets
176 Likes
31 Bookmarks
4 Replies
2 Quotes
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:oracle:concurrent_processing:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "AD6FCD78-CA2D-4594-A5FA-EDD501044E9F",
"versionEndIncluding": "12.2.14",
"versionStartIncluding": "12.2.3"
}
],
"operator": "OR"
}
]
}
]