CISA warns Oracle Identity Manager RCE flaw is being actively exploited

Published on November 21, 2025

The U.S. Cybersecurity & Infrastructure Security Agency (CISA) is warning government agencies to patch an Oracle Identity Manager tracked as CVE-2025-61757 that has been exploited in attacks, potentially as a zero-day. [...]