Oracle’s E-Business Suite is a collection of enterprise resource planning (ERP), customer relationship management (CRM), and supply-chain management (SCM) computer applications. Reports indicate that over 21,000 global organizations use Oracle EBS. Two critical vulnerabilities (CVE-2019-2638, CVE-2019-2633) in Oracle EBS have turned around the face of security for businesses. These vulnerabilities (also known as ORACLE EBS […]
Read More →Oracle has released 219 new security patches as a part of the quarterly update cycle. 142 vulnerabilities are remotely exploitable without user credentials. Oracle MySQL received 34 security patches. 9 vulnerabilities allow an attacker to exploit the underlying flaws over the network without any form of authentication. CVE-2019-8457 is considered to be the most critical […]
Read More →Oracle has released 300 security updates as part of the quarterly patch release cycle. The Oracle Critical Patch Update – April 2017 provides fixes for: Database Server, Oracle Secure Backup, Oracle Berkeley DB, Oracle API Gateway, Oracle Fusion Middleware Products, Enterprise Manager Base Platform, Oracle E-Business Suite, Oracle Transportation Manager, PeopleSoft Applications, JD Edwards EnterpriseOne […]
Read More →The following SCAP content has been released to SCAP Repo and SecPod ANCOR. SecPod Saner will automatically pull the relevant content on its next scheduled update. oval:org.secpod.oval:def:703311 CVE-2016-6136 CVE-2016-6480 CVE-2016-6828 USN-3097-2 USN-3097-2 — linux-image oval:org.secpod.oval:def:703312 CVE-2016-4036 CVE-2016-4049 USN-3102-1 USN-3102-1 — quagga vulnerabilities oval:org.secpod.oval:def:703313 CVE-2014-9906 CVE-2015-8949 CVE-2016-1246 USN-3103-1 USN-3103-1 — dbd::mysql vulnerabilities oval:org.secpod.oval:def:37784 CVE-2016-5605 Privilege escalation […]
Read More →Oracle has released an emergency security update for Java SE running in desktop web browsers. Advisory addresses an unspecified vulnerability(CVE-2016-0636) which can be remotely exploited without authentication, may be exploited over a network without the need for a username and password. To be successfully exploited, an unsuspecting user running an affected release in a browser will […]
Read More →Oracle has released 248 security updates as part of the quarterly patch release cycle. The Oracle Critical Patch Update – January 2016 provides fixes for: E-business suite, Java SE, Database Server, MySQL Server, GoldenGate, WebLogic, PeopleSoft Enterprise, Retail applications suite and Fusion applications. The CPUJan2016 Advisory address 78 security updates in E-business suite which can be remotely exploited without authentication. Eight(8) security […]
Read More →