CISA confirms hackers exploited Oracle E-Business Suite SSRF flaw

Published on October 21, 2025

CISA has confirmed that an Oracle E-Business Suite flaw tracked as CVE-2025-61884 is being exploited in attacks, adding it to its Known Exploited Vulnerabilities catalog. [...]

Continue reading on website
Other news

Cursor, Windsurf IDEs riddled with 94+ n-day Chromium vulnerabilities

October 21, 2025
The latest releases of Cursor and Windsurf integrated development environments are vulnerable to more than 94 known and patched security issues in the Chromium browser and the V8 JavaScript engine. [...]

TP-Link warns of critical command injection flaw in Omada gateways

October 21, 2025
TP-Link has made firmware updates available for a broad range of Omada gateway models to address four vulnerabilities, among which a critical pre-auth OS command injection. [...]