In October 2025, Recorded Future’s Insikt Group® identified thirty-two high-impact vulnerabilities that should be prioritized for remediation. This represents an increase from the sixteen identified in September, with the number of Very Critical vulnerabilities also increasing (26) month over month.
These vulnerabilities have affected the following vendors: Broadcom, XWiki, Dassault Systèmes, Adobe, Microsoft, Motex, Apple, Kentico, Oracle, IGEL, SKYSEA, Grafana Labs, Synacor, Linux, Mozilla, GNU, Jenkins, Juniper, Samsung, Smartbedded, and Gladinet.
October was dominated by flaws in Microsoft, which represented eight of the thirty-two vulnerabilities, and the CL0P ransomware group’s exploitation of Oracle E-Business Suite (EBS; CVE-2025-61882). CVE-2025-61882 enabled unauthenticated remote code execution (RCE), with potential for web shell deployment, persistence, lateral movement, and data exfiltration. In observed activity, CL0P (or an affiliate) chained multiple flaws to gain RCE, establish persistence, run interactive shells, and pressure victims via extortion emails.
Of the fourteen vulnerabilities we identified that enable RCE, five are more than a decade old. This highlights how attackers can target unretired legacy systems and internet-facing applications where patching has lagged.
Source: RecordedFuture
Source Link: https://www.recordedfuture.com/blog/october-2025-cve-landscape