The Register on MSN

CISA orders feds to patch Oracle Identity Manager zero-day after signs of abuse

Agencies have until December 12 to mitigate flaw that was likely exploited before Big Red released fix CISA has ordered US ...

CISA warns Oracle Identity Manager RCE flaw is being actively exploited

The U.S. Cybersecurity & Infrastructure Security Agency (CISA) is warning government agencies to patch an Oracle Identity ...
CSO Online

Oracle OIM zero‑day: Pre‑auth RCE forces rapid patching across enterprises

The critical pre-authentication RCE flaw is added to CISA’s KEV catalog, with a warning for federal civilian agencies to ...
Infosecurity Magazine

CISA Urges Patch of Actively Exploited Flaw in Oracle Identity Manager

It was reported by Oracle on November 21 and added to CISA Known Exploited Vulnerabilities (KEV) catalog the same day ...

Patch now! Malicious code attacks on Oracle Identity Manager observed

There are indications that attackers have been targeting Oracle Identity Manager since August of this year. A security update ...
Dark Reading

Critical Flaw in Oracle Identity Manager Under Exploitation

The exploitation of CVE-2025-61757 follows a breach of Oracle Cloud earlier this year and a extortion campaign against Oracle ...
The Silicon Review

CISA Confirms Exploitation of Oracle Vulnerability

CISA confirms active exploitation of a critical Oracle Identity Manager flaw, creating a cybersecurity emergency that demands ...
The Hacker News

CISA Warns of Actively Exploited Critical Oracle Identity Manager Zero-Day Vulnerability

CISA adds exploited Oracle Identity Manager CVSS 9.8 flaw to KEV catalog as agencies rush to patch zero-day attacks.