Initiatives for
As the national authority for Cybersecurity the CCB has developed several initiatives for specific publics which are presented here.
Warning: High-severity vulnerability in Oracle E-Business Suite, Patch Immediately!
Image
Published : 13/10/2025
* Last update: 13/10/2025
* Affected software: Oracle E-Business Suite, versions 12.2.3-12.2.14
* CVE/CVSS
→ CVE-2025-61884: CVSS 7.5 (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N)
Sources
Oracle Security Alert https://www.oracle.com/security-alerts/alert-cve-2025-61884.html
Risks
An easily exploitable vulnerability in Oracle E-Business Suite's Oracle Configurator allows an attacker to access sensitive and critical data. The vulnerability can be exploited remotely by an unauthenticated attacker and has a high impact on confidentiality.
Recent Oracle E-Business Suite vulnerabilities have been actively exploited by malware quickly.
Description
The vulnerability is present in the Runtime UI component. No specific weakness or details have been shared at this point. For more information, read the Oracle security alert.
Recommended Actions
Patch
The Centre for Cybersecurity Belgium strongly recommends installing updates for vulnerable devices with the highest priority after thorough testing.
Monitor/Detect
The CCB recommends organizations upscale monitoring and detection capabilities to identify any related suspicious activity, ensuring a swift response in case of an intrusion.
In case of an intrusion, you can report an incident via: https://ccb.belgium.be/report-incident.
While patching appliances or software to the newest version may provide safety from future exploitation, it does not remediate historic compromise.