CVE-2025-61757CISA KEV: Actively Exploited

Oracle Fusion Middleware Missing Authentication for Critical Function Vulnerability

Published Nov 21, 2025·Updated Nov 21, 2025

Description

Oracle Fusion Middleware contains a missing authentication for critical function vulnerability, allowing unauthenticated remote attackers to take over Identity Manager.

Public Exploits & PoCs3 found

References

View on NVD Search GitHub Search Google

Get alerted for CVEs like this

Register your stack and get notified within minutes when a matching CVE drops.

Start monitoring free