Oracle Products Multiple Vulnerabilities
Release Date: 16 Apr 2025
RISK: Medium Risk
TYPE: Servers - Database Servers
Multiple vulnerabilities were identified in Oracle Products, a remote attacker could exploit some of these vulnerabilities to trigger elevation of privilege, denial of service condition, remote code execution, sensitive information disclosure, data manipulation, cross-site scripting and security restriction bypass on the targeted system.
Impact
- Denial of Service
- Remote Code Execution
- Security Restriction Bypass
- Information Disclosure
- Elevation of Privilege
- Data Manipulation
- Cross-Site Scripting
System / Technologies affected
- Oracle MySQL
- Java SE
- Oracle Database Server
- WebLogic Server
- VirtualBox
For other Oracle products, please refer to the link below:
https://www.oracle.com/security-alerts/cpujan2025.html
Solutions
Before installation of the software, please visit the vendor web-site for more details.
Apply fixes issued by the vendor:
Oracle Critical Patch Update Advisory
Vulnerability Identifier
Source
Related Link
https://www.oracle.com/security-alerts/cpuapr2025.html
沒有留言:
發佈留言