CVE-2025-61757: Oracle Fusion Middleware Missing Authentication for
Oracle Fusion Middleware Missing Authentication for Critical Function Vulnerability. Oracle Fusion Middleware contains a missing authentication for critical function vulnerability, allowing unauthenticated remote attackers to take over Identity Manager.
- CISA KEV-listed (remediation due 2025-12-12)
- EPSS 87.8% (99.5% percentile)