Oracle Security Alert Advisory - CVE-2025-61882

Oct. 6, 2025, 9:03 a.m.

Description

A critical security vulnerability (CVE-2025-61882) has been identified in Oracle E-Business Suite versions 12.2.3-12.2.14. This flaw is remotely exploitable without authentication, potentially leading to remote code execution. The vulnerability affects the BI Publisher Integration component of Oracle Concurrent Processing and has a CVSS v3.1 base score of 9.8. Oracle strongly advises customers to apply the provided security updates promptly. Indicators of compromise include suspicious IP addresses, specific command patterns, and file hashes. The alert also emphasizes the importance of staying on actively-supported versions and applying all security patches without delay.

External References

https://otx.alienvault.com/pulse/68e376d298efc33781e6cbb9
https://www.oracle.com/security-alerts/alert-cve-2025-61882.html
Tags
remote code execution
CVE-2025-61882
2025-10-06
security alert
oracle e-business suite

Date

  • Created: Oct. 6, 2025, 7:59 a.m.
  • Published: Oct. 6, 2025, 7:59 a.m.
  • Modified: Oct. 6, 2025, 9:03 a.m.

Indicators

  • 76b6d36e04e367a2334c445b51e1ecce97e4c614e88dfb4f72b104ca0f31235d
  • aa0d3859d6633b62bccfb69017d33a8979a3be1f3f0a5a4bf6960d6c73d41121
  • 6fd538e4a8e3493dda6f9fcdc96e814bdd14f3e2ef8aa46f0143bff34b882c1b
  • 200.107.207.26
  • 185.181.60.11
Download all indicators here!

Attack Patterns

Linked vulnerabilities

CVE-2025-61882

9.8
    Oracle
  • Concurrent Processing
Published: October 5, 2025