CSO Online

Oracle OIM zero‑day: Pre‑auth RCE forces rapid patching across enterprises

The critical pre-authentication RCE flaw is added to CISA’s KEV catalog, with a warning for federal civilian agencies to ...
The Register on MSN

CISA orders feds to patch Oracle Identity Manager zero-day after signs of abuse

Agencies have until December 12 to mitigate flaw that was likely exploited before Big Red released fix CISA has ordered US ...
Dark Reading

Critical Flaw in Oracle Identity Manager Under Exploitation

The exploitation of CVE-2025-61757 follows a breach of Oracle Cloud earlier this year and a extortion campaign against Oracle ...