Security News > 2017 > January > Massive Oracle Critical Patch Update fixes 270 vulnerabilities (Help Net Security)
2017-01-19 17:22
Oracle has released the first Critical Patch Update scheduled for 2017, and it’s massive. It fixes 270 vulnerabilities across multiple products, and over 100 of them are remotely exploitable by unauthenticated attackers. The entire list of affected products and components is long, and Oracle advises users of all of them to implement the updates as soon as possible. “The focus has shifted from Database and Java SE to critical business applications, as we predicted within … More →
News URL
http://feedproxy.google.com/~r/HelpNetSecurity/~3/7GfcmprNhPs/
Related news
- Ivanti Issues Critical Security Updates for CSA and Connect Secure Vulnerabilities (source)
- Critical security hole in Apache Struts under exploit (source)
- Vanir: Open-source security patch validation for Android (source)
- BeyondTrust Issues Urgent Patch for Critical Vulnerability in PRA and RS Products (source)
- Patch Alert: Critical Apache Struts Flaw Found, Exploitation Attempts Detected (source)
- CISA Adds Critical Flaw in BeyondTrust Software to Exploited Vulnerabilities List (source)
- Critical SQL Injection Vulnerability in Apache Traffic Control Rated 9.9 CVSS — Patch Now (source)
- CISA warns of critical Oracle, Mitel flaws exploited in attacks (source)
- CISA Flags Critical Flaws in Mitel and Oracle Systems Amid Active Exploitation (source)
- Mitel MiCollab, Oracle WebLogic Server vulnerabilities exploited by attackers (source)