Customers running Oracle’s Identity Manager (OIM) software are exposed to a critical pre-auth RCE vulnerability that is being actively exploited.

Per CVE.org: CVE-2025-61757 (CVSS 9.8) is an “easily exploitable vulnerability [that] allows unauthenticated attacker with network access via HTTP to compromise Identity Manager [for] takeover of Identity Manager.”

It stems from the use of “very error-prone” authentication filters in its Apache Groovy/Java codebase that are “almost always bypassable” according to the researchers credited by Oracle with the vulnerability disclosure. 

Get the full story: Subscribe for free

Join peers managing over $100 billion in annual IT spend and subscribe to unlock full access to The Stack’s analysis and events.

Subscribe now

Already a member? Sign in