CISA Adds Critical Oracle Identity Manager Vulnerability to KEV Catalog Amid Active Exploitation

The Cybersecurity and Infrastructure Security Agency (CISA) has added a critical security vulnerability affecting Oracle Identity Manager to its Known Exploited Vulnerabilities (KEV) catalog. Identified as CVE-2025-61757 with a CVSS score of 9.8, this vulnerability involves the absence of authentication for a critical function, potentially leading to pre-authentication exploits. Oracle Identity Manager is a crucial component in many organizations' identity and access management (IAM) infrastructure. A vulnerability of this nature poses significant risks, as it can allow attackers to bypass authentication mechanisms and gain unauthorized access to sensitive systems and data. The high CVSS score of 9.8 underscores the severity of this vulnerability. It indicates that the vulnerability is easy to exploit and has a substantial impact on the affected systems. The fact that CISA has added this to its KEV catalog suggests that there is evidence of active exploitation in the wild, making it imperative for organizations to take immediate action. Technical implications include unauthorized access, data breaches, and privilege escalation. The inclusion of this vulnerability in CISA's KEV catalog highlights the ongoing threat posed by vulnerabilities in identity management systems. Expert insights recommend prioritizing patch management, implementing robust monitoring and detection, strengthening access controls, and preparing incident response plans. In conclusion, the active exploitation of CVE-2025-61757 in Oracle Identity Manager underscores the importance of timely patching and robust security measures. Organizations must take immediate action to mitigate this critical vulnerability and protect their systems from potential attacks.