CVE-2025-61882 PoC — Oracle E-Business Suite 安全漏洞

Source

https://github.com/zerozenxlabs/CVE-2025-61882-Oracle-EBS

Associated Vulnerability

Title:Oracle E-Business Suite 安全漏洞 (CVE-2025-61882)
Description:Vulnerability in the Oracle Concurrent Processing product of Oracle E-Business Suite (component: BI Publisher Integration). Supported versions that are affected are 12.2.3-12.2.14. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Concurrent Processing. Successful attacks of this vulnerability can result in takeover of Oracle Concurrent Processing. CVSS 3.1 Base Score 9.8 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H).

Readme

Oracle E-Business Suite — CVE-2025-61882

This repository contains ZeroZenX’s research artifacts and a fully operational exploit implementation for CVE-2025-61882, provided to support defensive research, incident response, detection engineering, and patch verification in authorized environments only.

Important:
This code is intended exclusively for use by security professionals in controlled lab environments, penetration testers with explicit authorization, and vendors/operators who need to validate mitigations. 
Unauthorized use against production systems or systems you do not own is illegal and unethical.

File Snapshot


 [4.0K]  /data/pocs/6c916b2259a109ca6f029b98e61cf25f612efab3
├── [3.6K]  exploit.py
├── [ 620]  README.md
└── [2.3K]  server.py

1 directory, 3 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.

View subscription plans →

Goal Reached Thanks to every supporter — we hit 100%!