Oracle Patches 299 Vulnerabilities in Numerous Products

Oracle released a Critical Patch Update for April 2017 to address 299 vulnerabilities in numerous products. Successful exploitation of several of these vulnerabilities may allow a remote attacker to take control of an affected system, potentially without even requiring authentication or user interaction. The NJCCIC recommends all users and administrators of Oracle products review the Oracle Critical Patch Update Advisory – April 2017 and apply all necessary updates as soon as possible.

The patched vulnerabilities affect the following Oracle products: Oracle Applications, including Communications, Financial Services, Health Services, Hospitality, Insurance, Retail, and Utilities; Berkeley DB; Database Server; Enterprise Manager Grid Control; Fusion Middleware; Hyperion Oracle Java SE; Linux and Virtualization; MySQL; Primavera Products Suite; Solaris and Solaris Cluster; Sun Systems Product Suite; and Support Tools.