![]() ![]() The Critical Patch Update for Oracle Fusion Middleware contains 60 new security patches. Out of which, 57 vulnerabilities may be remotely exploitable without authentication.ĬVE-2023-20862, CVE-2022-37434, CVE-2022-1471, CVE-2023-20873, and CVE-2022-36944 in different products of Oracle Communications have the highest CVSS score of 9.8. The Critical Patch Update for Oracle Communications contains 77 new security patches for Oracle Communications. 115 of these vulnerabilities may be remotely exploitable without authentication.ĬVE-2022-1471, CVE-2022-46364, CVE-2022-45047, and CVE-2022-31692 in different Oracle Financial Services Applications products have the highest CVSS score of 9.8. This Critical Patch Update for Oracle Financial Services Applications contains 147 security patches. Notable Oracle Vulnerabilities Patched Oracle Financial Services Applications Note: The table will be updated with the additional QIDs once released. Oracle MySQL July 2023 Critical Patch Update (CPUJULY2023) Oracle Database 19c Critical OJVM Patch Update – July 2023 Oracle Database 21c Critical Patch Update – July 2023 Oracle Database 19c Critical Patch Update – July 2023 Oracle Solaris 11.4 Support Repository Update (SRU) 59.138.2 Missing (CPUJUL2023) Oracle WebLogic Server Multiple Vulnerabilities (CPUJUL2023) Oracle Java Standard Edition (SE) Critical Patch Update – July 2023 (CPUJUL2023) Oracle Coherence July 2023 Critical Patch Update (CPUJUL2023) Oracle Hypertext Transfer Protocol Server (HTTP Server) Server Multiple Vulnerabilities (CPUJUL2023) Oracle MySQL Connector Critical Patch Update (CPU) July 2023 (CPUJULY2023) Oracle Managed Virtualization (VM) VirtualBox Linux Multiple Vulnerabilities (CPUJUL2023) Oracle Managed Virtualization (VM) VirtualBox Windows Multiple Vulnerabilities (CPUJUL2023) Qualys has released 12 QIDs mentioned in the table below: QIDs In these security updates, Oracle has covered product families, including Oracle Database Server, Oracle Application Express, Oracle Essbase, Oracle GoldenGate, Oracle Graph Server and Client, Oracle Spatial Studio, Oracle TimesTen In-Memory Database, Oracle Commerce, Oracle Communications Applications, Oracle Communications, Oracle Construction and Engineering, Oracle E-Business Suite, Oracle Enterprise Manager, Oracle Financial Services Applications, Oracle Food and Beverage Applications, Oracle Fusion Middleware, Oracle Analytics, Oracle Health Sciences Applications, Oracle Hospitality Applications, Oracle Hyperion, Oracle Insurance Applications, Oracle Java SE, Oracle JD Edwards, Oracle MySQL, Oracle PeopleSoft, Oracle Policy Automation, Oracle Retail Applications, Oracle Siebel CRM, Oracle Supply Chain, Oracle Systems, Oracle Utilities Applications, Oracle Virtualization. Oracle Communications and Oracle Fusion Middleware followed, with 77 and 60 patches, respectively.Ĥ49 of the 508, i.e.,88% of security patches, are for non-Oracle CVEs, which are security fixes for issues in third-party products such as open-source components included and exploitable in the context of their Oracle product distributions. These patches address vulnerabilities in Oracle code and third-party components included in Oracle products.ĭuring Q3 2023 Oracle Critical Patch Update, the Oracle Financial Services Applications received the highest number of 147 patches, constituting 29% of the total patches released. ![]() ![]() Some of the vulnerabilities addressed this month impact more than one product. Oracle has released its third quarterly edition of Critical Patch Update, which contains a group of patches for 508 security vulnerabilities. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |