CSO Online

Oracle OIM zero‑day: Pre‑auth RCE forces rapid patching across enterprises

The critical pre-authentication RCE flaw is added to CISA’s KEV catalog, with a warning for federal civilian agencies to ...

CISA orders feds to patch Oracle Identity Manager zero-day after signs of abuse

CISA has ordered US federal agencies to patch against an actively exploited Oracle Identity Manager (OIM) flaw within three ...
Dark Reading

Critical Flaw in Oracle Identity Manager Under Exploitation

The exploitation of CVE-2025-61757 follows a breach of Oracle Cloud earlier this year and a extortion campaign against Oracle ...