Unauthenticated Access Vulnerability in Oracle E-Business Suite - BI Publisher Integration
CVE-2025-61882

9.8CRITICAL

Key Information:

Vendor: Oracle
Status: Oracle Concurrent Processing
Vendor: CVE Published:; 5 October 2025

Badges

🔥 Trending now🥇 Trended No. 1📈 Trended📈 Score: 38,200💰 Ransomware👾 Exploit Exists🟡 Public PoC🟣 EPSS 80%🦅 CISA Reported📰 News Worthy

What is CVE-2025-61882?

CVE-2025-61882 is a critical vulnerability affecting the Oracle E-Business Suite, specifically within the Oracle Concurrent Processing component related to BI Publisher Integration. This vulnerability enables unauthenticated attackers to gain network access via HTTP, allowing them to compromise the functionality of Oracle Concurrent Processing without needing legitimate access credentials. Organizations utilizing the affected versions (12.2.3 to 12.2.14) of the Oracle E-Business Suite face significant risks due to this vulnerability's high CVSS score of 9.8, which highlights its potential to severely impact confidentiality, integrity, and availability of sensitive data and services.

Potential impact of CVE-2025-61882

Unauthorized Access: The vulnerability permits attackers to exploit the Oracle Concurrent Processing capabilities without the need for authentication, paving the way for unauthorized actions that could compromise sensitive business data.
Data Breach Risks: Given the elevated access levels that can be achieved through this vulnerability, there is a substantial risk of data breaches. Attackers could access, modify, or exfiltrate confidential information stored within the Oracle E-Business Suite, leading to significant financial and reputational damage to affected organizations.
System Compromise: Successful exploitation of CVE-2025-61882 could lead to the complete takeover of Oracle Concurrent Processing, resulting in severe operational disruptions, loss of control over critical systems, and the potential for further attacks or deployment of additional malware within the affected environment.

CISA has reported CVE-2025-61882

CISA provides regional cyber and physical services to support security and resilience across the United States. CISA monitor the most dangerious vulnerabilities and have identifed CVE-2025-61882 as being exploited and is known by the CISA as enabling ransomware campaigns.

The CISA's recommendation is: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Affected Version(s)

Oracle Concurrent Processing 12.2.3 <= 12.2.14

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2025-61882-Oracle-E-Business-Suite-Pre-Auth-RCE-Exploit
Created by AdityaBhatt3010

CVE-2025-61882
Created by GhoStZA-debug

CVE-2025-61882
Created by Sachinart

News Articles

CyberSecurityNews

CVE-2025-61882

Lessons from Oracle E-Business Suite Hack That Allegedly Compromises Nearly 30 Organizations Worldwide

A sophisticated cyberattack targeting Oracle E-Business Suite (EBS) customers has exposed critical vulnerabilities in enterprise resource planning systems, compromising an estimated 100 organizations worldwide between July and October 2025.

15 hours ago

CyberSecurityNews

CVE-2025-61882

Cl0P Ransomware Group Allegedly Claims Breach of Entrust in Oracle 0-Day EBS Hack

The notorious Cl0P ransomware group has claimed responsibility for breaching digital security firm Entrust, exploiting a critical zero-day vulnerability in Oracle E-Business Suite (EBS). The attack, tied to CVE-2025-61882, marks another high-profile victim in Cl0P’s relentless assault on organizatio...

1 week ago