Security News > 2021 > April > Oracle Delivers 390 Security Fixes With April 2021 CPU

Oracle Delivers 390 Security Fixes With April 2021 CPU
2021-04-21 12:02

Oracle this week announced the release of 390 new security fixes as part of the April 2021 Critical Patch Update, including patches for more than 200 bugs that could be exploited remotely without authentication.

The quarterly set of security patches addresses a total of 41 vulnerabilities considered critical severity, including 5 that feature a CVSS score of 10.

Oracle's E-Business Suite received patches for the largest number of security holes, namely 70.

Only 5 of the 24 flaws patched in Oracle Virtualization could be exploited by remote attackers without authentication, but two of them carry a CVSS score of 10.

Other Oracle products that received patches in this CPU include Communications, PeopleSoft, Financial Services Applications, JD Edwards, Database, Communications Applications, Construction and Engineering, Enterprise Manager, and Siebel CRM. Organizations are advised to review Oracle's quarterly patches and apply the necessary software updates as soon as possible, to ensure they remain protected from potential attacks.

Oracle says it periodically receives reports of attacks targeting old vulnerabilities for which patches are already available.


News URL

http://feedproxy.google.com/~r/Securityweek/~3/AD8UeWvLdYk/oracle-delivers-390-security-fixes-april-2021-cpu

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Oracle 698 249 2225 1709 366 4549