Oracle releases 245 new security patches, all rated ‘high-priority security’
Summary
Oracle has released 245 new security patches, all classified as 'high-priority security' fixes. These patches address vulnerabilities across various Oracle products, including Enterprise Manager, JD Edwards, Fusion Middleware, MySQL, and Peoplesoft, with some specifically targeting critical remote code execution flaws and remote exploits.
IFF Assessment
This release signifies the discovery and patching of numerous security vulnerabilities, which can be exploited by attackers to gain unauthorized access or execute malicious code.
Severity
CISA KEV: Listed as actively exploited. Federal patch due: June 15, 2026. Known ransomware use: Known.
Defender Context
This large batch of high-priority patches from Oracle underscores the ongoing need for diligent vulnerability management. Defenders should prioritize applying these updates promptly, especially those addressing remote code execution and unauthenticated remote exploits, to mitigate potential attack vectors.