On October 21, Oracle delivered its final quarterly update for 2025, emphasizing the importance of cybersecurity in their software offerings. The update targets 170 unique CVEs and introduces a total of 374 security fixes, with 10.7% categorized as critical. Critical patches were notably concentrated in widely-used products such as Oracle TimesTen and Oracle Spatial Studio, which accounted for the majority of the vulnerabilities addressed.
Around 19.5% of the total patches came from Oracle TimesTen In-Memory Database, indicating that this product might be particularly susceptible to threats. In addition to these updates, Oracle disclosed two zero-day vulnerabilities in its E-Business Suite, further stressing the necessity for immediate patch application. Failure to implement these updates could expose organizations to significant security risks, including potential data breaches and system outages.
The advisory urges customers to prioritize these security updates to protect their systems from exploitation. With increasing cyber threats, it is essential for businesses to stay vigilant and ensure that they are operating on secured software versions. Oracle’s comprehensive approach to patch management underscores the ongoing challenges in cybersecurity that organizations face today.
👉 Pročitaj original: Tenable Research
