The National Cyber Emergency Response Team (National CERT) has issued an urgent warning to government departments, military institutions, and critical infrastructure organizations about a serious security flaw in Oracle E-Business Suite (EBS).
This flaw allows hackers to take full control of affected systems without needing a password. Attackers can steal sensitive data, disrupt key operations, and cause major damage.
According to the advisory, hackers are already using this vulnerability to run high-level commands on unpatched Oracle EBS systems. These attacks have led to attempts at unauthorized access, data theft, and extortion targeting both government and enterprise networks. National CERT said that any breach of EBS, which handles important tasks like finance, HR, and supply chain, could create severe operational and reputational problems.
The vulnerability is listed as CVE-2025-61882 and has a critical severity score of 9.8. It does not require any user action or special permissions to exploit. Hackers can attack exposed EBS systems through normal web traffic (HTTP or HTTPS). Organizations with systems connected to the internet or not properly segmented are especially at risk. Any system that has not installed Oracle’s latest security patches remains highly vulnerable.
National CERT stated that all unpatched Oracle EBS systems should be treated as vulnerable, especially those reachable from untrusted networks or lacking multi-factor authentication for administrator access. Government and military systems connected to shared or hybrid infrastructure are also in the high-risk category due to wider exposure.
The advisory provides detailed steps to reduce the risk. Organizations are urged to quickly install Oracle’s latest security patches, place EBS systems behind firewalls or secure gateways, and block public access to management interfaces. National CERT also advises close monitoring of logs, unusual data transfers, and signs of attackers trying to bypass authentication. Organizations should also enable multi-factor authentication and change privileged account passwords.
The advisory further instructs organizations to keep updated offline backups of EBS databases, activate incident response plans if a breach is suspected, and save all forensic evidence for investigation. National CERT warned that delaying patches or security hardening could cause service outages, ransom demands, legal problems, and long-term harm to essential government operations.
National CERT has asked all departments and affiliated organizations to share the advisory widely and take immediate action. It urged all stakeholders to include this vulnerability in their risk management processes and continuously monitor their systems for possible attacks.
Nice spellings