SecurityWeek

CISA Confirms Exploitation of Latest Oracle EBS Vulnerability

CISA has confirmed that an Oracle E-Business Suite (EBS) vulnerability CVE-2025-61884 has been exploited in the wild.

CISA confirms hackers exploited Oracle E-Business Suite SSRF flaw

CISA has confirmed that an Oracle E-Business Suite flaw tracked as CVE-2025-61884 is being exploited in attacks, adding it to ...

Critical Oracle EBS Flaw Could Expose Sensitive Data

Oracle patches a high-severity EBS flaw that could let attackers bypass authentication and access sensitive enterprise data.
SecurityWeek

Oracle Patches EBS Vulnerability Allowing Access to Sensitive Data

Oracle patched another severe E-Business Suite (EBS) vulnerability that can be exploited to gain access to sensitive data.
The Hacker News

New Oracle E-Business Suite Bug Could Let Hackers Access Data Without Login

The development comes shortly after Google Threat Intelligence Group (GTIG) and Mandiant disclosed that dozens of ...

Oracle E-Business Suite exploitation traced back as early as July

Researchers say an extortion campaign linked to the Clop ransomware group used a series of chained vulnerabilities and ...
CSO Online

Oracle issues second emergency patch for E-Business Suite in two weeks

Information disclosure flaw, CVE-2025-61884, emerges weeks after zero-day attacks, raising questions about broader security issues in Oracle’s flagship ERP platform.
CSOonline

Oracle E-Business Suite users targeted in extortion campaign

Cl0p-linked threat actors are targeting Oracle E-Business Suite users with spear-phishing emails claiming theft of sensitive ERP data. Oracle E-Business Suite users beware: Hackers may (or may not) ...
CRN

Google Says Oracle EBS Extortion Campaign Possibly Targeted Thousands, Could Date Back To July

Google Threat Intelligence Group and Mandiant share new details on the Oracle E-Business Suite extortion campaign by a threat ...