By Mels Dees
Publication Date: 2025-11-24 09:49:00
CISA warns it is critical vulnerability in Oracle Identity Manager is actively exploited. The CVE-2025-61757 flaw allows remote code execution without authentication and poses an immediate risk to organizations that rely on the platform for identity and access management.
Accordingly The Hacker NewsThe vulnerability affects both older and newer versions of Oracle Identity Manager and could have significant consequences in many environments because the product is often deeply integrated into business processes and other applications.
The flaw was discovered by Searchlight Cyber researchers Adam Kues and Shubham Shah. The bypass occurs because a security filter in the REST APIs is not robust enough. By adding parameters such as question mark WSDL or semicolon wadl to a URL, the system treats secure endpoints as if they were freely accessible.
This allows access to internal functions without authentication. The researchers show that…