Here is the first information about the next CPU.
Database:
- This CPU contains 17 new security fixes (including 2 for Oracle Application Express)
- The highest CVSS base score of vulnerabilities is 6.6.
This is regarded as a high risk. - Some very critical components are affected:
- Audit
- Authentication
- Core RDBMS
- Data Pump
- Export
- Oracle Net Services
- Query Optimizer
- …
- This CPU includes fixes for Oracle Database 11g too.
Oracle Application Server:
- This CPU contains 3 new security fixes
- All of these vulnerabilities may be remotely exploited without authentication!
- The highest CVSS base score of vulnerabilities is 9.3 for clients and 6.6 for servers.
This is regarded as a very high risk.
Oracle Enterprise Manager:
- This CPU contains 1 new security fix (in the Oracle Agent)
- The CVSS base score of vulnerability is 6.6.
This is regarded as a high risk.
