NVD disclosure day

Published threat advisories for October 12, 2025

CVE advisoryKnown Exploit

CVE-2025-61884

Oracle Configurator Vulnerability Allows Unauthorized Data Access.

Halo Surface Signal: 3 out of 5 — possibly public-facing.

A vulnerability in Oracle Configurator allows unauthenticated attackers to access critical data. This impacts organizations using Oracle E-Business Suite, posing a business risk of unauthorized data compromise. The CVSS score of 7.5 highlights the potential for significant data loss.

NVD published: • CISA KEV