Ptechhub
  • News
  • Industries
    • Enterprise IT
    • AI & ML
    • Cybersecurity
    • Finance
    • Telco
  • Brand Hub
    • Lifesight
  • Blogs
No Result
View All Result
  • News
  • Industries
    • Enterprise IT
    • AI & ML
    • Cybersecurity
    • Finance
    • Telco
  • Brand Hub
    • Lifesight
  • Blogs
No Result
View All Result
PtechHub
No Result
View All Result

CISA: Oracle E-Business Suite Vulnerability Exploited In Ransomware Attacks

CRN by CRN
October 21, 2025
Home News
Share on FacebookShare on Twitter


Oracle had initially disclosed the vulnerability earlier this month, though without providing any details about exploitation.

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has confirmed that a vulnerability impacting Oracle E-Business Suite customers has seen exploitation in ransomware attacks.

The vulnerability — tracked as CVE-2025-61884 — is separate from the flaw recently linked to a widespread data extortion campaign targeting E-Business Suite customers.

[Related: Google Says Oracle EBS Extortion Campaign Possibly Targeted Thousands, Could Date Back To July]

In an advisory Monday, CISA added CVE-2025-61884 to its catalog of vulnerabilities known to have been exploited by threat actors.

Oracle had initially disclosed the vulnerability on Oct. 11, though without providing any details about exploitation. CRN has reached out to Oracle for comment.

In the entry into the vulnerabilities catalog about the flaw, CISA confirmed that the server-side request forgery vulnerability affecting E-Business Suite is known to have been utilized in ransomware campaigns.

“These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise,” CISA wrote in its advisory, requiring federal agencies to implement fixes for the issue by Nov. 10.

While the order only applies to Federal Civilian Executive Branch agencies, CISA “strongly urges all organizations to reduce their exposure to cyberattacks by prioritizing timely remediation of [such] vulnerabilities as part of their vulnerability management practice,” the agency said.

The flaw has received a severity score of 7.5 out of 10.0, making it a high-severity issue.

“This vulnerability is remotely exploitable without authentication, i.e., it may be exploited over a network without the need for a username and password,” Oracle wrote in its advisory Oct. 11. “If successfully exploited, this vulnerability may allow access to sensitive resources.”

Patches are available for the impacted versions of E-Business Suite (versions 12.2.3-12.2.14), Oracle has said.

According to a report from BleepingComputer, the vulnerability is believed to have been exploited in a July cyberattack campaign.

The widespread data extortion campaign targeting Oracle E-Business Suite customers, meanwhile, is believed to have occurred in August, according to BleepingComputer. Those attacks had exploited a critical-severity vulnerability in E-Business Suite tracked as CVE-2025-61882.

That campaign — which involved data theft followed by extortion emails sent to a number of organizations — has been linked to the cybercriminal group Clop by researchers at Google Cloud-owned Mandiant and the Google Threat Intelligence Group.



Source link

Tags: CyberattacksCybersecurityData breachesransomwareSaaSVulnerabilities
CRN

CRN

Next Post
Le Mobile World Congress 2025 (MWC 25) de Kigali s’ouvre sur des appels à des réformes politiques pour accélérer la transformation numérique de l’Afrique

Le Mobile World Congress 2025 (MWC 25) de Kigali s'ouvre sur des appels à des réformes politiques pour accélérer la transformation numérique de l'Afrique

Recommended.

From coder to orchestrator: How developer roles are changing in the age of agentic AI

From coder to orchestrator: How developer roles are changing in the age of agentic AI

August 11, 2025
Stocks making the biggest moves premarket: Warner Bros. Discovery, Paramount Skydance, Masimo, Danaher & more

Stocks making the biggest moves premarket: Warner Bros. Discovery, Paramount Skydance, Masimo, Danaher & more

February 17, 2026

Trending.

AWS Vs. Google Cloud Vs. Microsoft Azure Q1 Earnings Face-Off

AWS Vs. Google Cloud Vs. Microsoft Azure Q1 Earnings Face-Off

May 1, 2026
Cloud Market Share Q1 2026: AWS, Microsoft, Google Battling In AI Era

Cloud Market Share Q1 2026: AWS, Microsoft, Google Battling In AI Era

May 4, 2026
Google’s 0 Million Partner Fund Targets AI Agent Era Channel Paradigm Shift

Google’s $750 Million Partner Fund Targets AI Agent Era Channel Paradigm Shift

April 24, 2026
AWS Solution Provider Caylent Unveils Dedicated Anthropic Claude Unit

AWS Solution Provider Caylent Unveils Dedicated Anthropic Claude Unit

April 30, 2026
Dell’s Infrastructure Blitz: Private Cloud, PowerStore Elite, PowerEdge In Spotlight At Dell Technologies World 2026

Dell’s Infrastructure Blitz: Private Cloud, PowerStore Elite, PowerEdge In Spotlight At Dell Technologies World 2026

May 19, 2026

PTechHub

A tech news platform delivering fresh perspectives, critical insights, and in-depth reporting — beyond the buzz. We cover innovation, policy, and digital culture with clarity, independence, and a sharp editorial edge.

Follow Us

Industries

  • AI & ML
  • Cybersecurity
  • Enterprise IT
  • Finance
  • Telco

Navigation

  • About
  • Advertise
  • Privacy & Policy
  • Contact

Subscribe to Our Newsletter

  • About
  • Advertise
  • Privacy & Policy
  • Contact

Copyright © 2025 | Powered By Porpholio

No Result
View All Result
  • News
  • Industries
    • Enterprise IT
    • AI & ML
    • Cybersecurity
    • Finance
    • Telco
  • Brand Hub
    • Lifesight
  • Blogs

Copyright © 2025 | Powered By Porpholio