Oracle has released 397 new security patches as a part of their quarterly update cycle, out of which 262 vulnerabilities are remotely exploitable without user authentication. Oracle MySQL received 45 security patches of which 9 of the vulnerabilities allow an attacker to remotely exploit machines without the need for user authentication. A few CVE’s if […]

Read More →

Oracle’s E-Business Suite is a collection of enterprise resource planning (ERP), customer relationship management (CRM), and supply-chain management (SCM) computer applications. Reports indicate that over 21,000 global organizations use Oracle EBS. Two critical vulnerabilities (CVE-2019-2638, CVE-2019-2633) in Oracle EBS have turned around the face of security for businesses. These vulnerabilities (also known as ORACLE EBS […]

Read More →

Oracle has released 219 new security patches as a part of the quarterly update cycle. 142 vulnerabilities are remotely exploitable without user credentials. Oracle MySQL received 34 security patches. 9 vulnerabilities allow an attacker to exploit the underlying flaws over the network without any form of authentication. CVE-2019-8457 is considered to be the most critical […]

Read More →

Oracle has released 300 security updates as part of the quarterly patch release cycle. The Oracle Critical Patch Update – April 2017 provides fixes for: Database Server, Oracle Secure Backup, Oracle Berkeley DB, Oracle API Gateway, Oracle Fusion Middleware Products,  Enterprise Manager Base Platform, Oracle E-Business Suite, Oracle Transportation Manager, PeopleSoft Applications, JD Edwards EnterpriseOne […]

Read More →

The following SCAP content has been released to SCAP Repo and SecPod ANCOR. SecPod Saner will automatically pull the relevant content on its next scheduled update. oval:org.secpod.oval:def:703311 CVE-2016-6136 CVE-2016-6480 CVE-2016-6828 USN-3097-2 USN-3097-2 — linux-image oval:org.secpod.oval:def:703312 CVE-2016-4036 CVE-2016-4049 USN-3102-1 USN-3102-1 — quagga vulnerabilities oval:org.secpod.oval:def:703313 CVE-2014-9906 CVE-2015-8949 CVE-2016-1246 USN-3103-1 USN-3103-1 — dbd::mysql vulnerabilities oval:org.secpod.oval:def:37784 CVE-2016-5605 Privilege escalation […]

Read More →

Oracle has released an emergency security update for Java SE running in desktop web browsers. Advisory addresses an unspecified vulnerability(CVE-2016-0636) which can be remotely exploited without authentication, may be exploited over a network without the need for a username and password. To be successfully exploited, an unsuspecting user running an affected release in a browser will […]

Read More →