DSP Blog

Oracle's Critical Patch Update April 2023

Written by Ben Morris | 20-Apr-2023 15:05:13

Oracle issues a Critical Patch Update (CPU) every quarter that includes a set of fixes for multiple security vulnerabilities. The patches address potential security threats in Oracle's products, including both code and third-party components. 

This quarter's update includes 433 new security patches across a range of Oracle products, as well as 298 vulnerabilities that are particularly concerning because they may be remotely exploitable without authentication (over a network without requiring user credentials to access); therefore, we strongly recommend customers to apply CPU fixes as soon as possible and prioritise these patches.

 

What should I do?

Below you will find a list of affected products and the number of identified vulnerabilities for each. If you use any of these products, it’s essential you take the necessary action to address the potential vulnerabilities in your estate. But don’t worry, DSP is here to help. Organisations frequently approach us at this time to utilise our Oracle Consultancy services and stay on top of their patches. So, please get in touch if this is an area of concern for you.

 

List of Identified products and vulnerabilities:

The number in bold = the number of security patches

The numbers in (brackets) = the number of vulnerabilities

It can be daunting to see a long list of vulnerabilities, but it's important that your hardware and applications remain secure. As long as you stay on top of these Critical Patch Updates, your environment will be safe. For full details of all the patches, click here

If you would like any support or advice on patching or securing your estate please get in touch with our experts, or book a meeting...