THREAT OPS › CVEs › CVE-2025-61884
CVE-2025-61884 — Oracle E-Business Suite Server-Side Request Forgery (SSRF) Vulnerability
Oracle E-Business Suite contains a server-side request forgery (SSRF) vulnerability in the Runtime component of Oracle Configurator. This vulnerability is remotely exploitable without authentication.
Vulnerability details
- Affected productsE-Business Suite
- KEV remediation due2025-11-10