5 threads tagged with “oracle”
Oracle released an important advisory addressing CVE-2025-62168 in the Squid caching proxy component. The vulnerability allows remote attackers to access cached sensitive data under certain conditions…
Category: Advisory / Vulnerability / Linux Security
BlockThreat’s Week 43 newsletter reports a relatively quiet week (<$1M losses) and covers research on price oracle exploits, off-chain and multisig security, and tooling updates across Ethereum and So…
Category: Industry News / Research & Tools / Research & Tools
Oracle has released its October 2025 Critical Patch Update (CPU), addressing multiple high-severity vulnerabilities across Oracle Database, Fusion Middleware, MySQL, and Java SE. The advisory highligh…
Category: Threat Alerts / Vulnerabilities & Exploits / Vendor Security Advisories
CISA added five security flaws to the Known Exploited Vulnerabilities (KEV) catalog, confirming real‑world exploitation. Highlights include Oracle E‑Business Suite SSRF (CVE-2025-61884) and RCE (CVE-2…
Category: Threat Alerts / Vulnerabilities & Exploits / Vulnerabilities & Exploits
Oracle warned of CVE-2025-61884 (CVSS 7.5) affecting EBS 12.2.3–12.2.14, allowing unauthenticated HTTP access to Oracle Configurator and potential exposure of critical data; patching urged.
Category: Threat Alerts / Vulnerabilities & Exploits / Vulnerabilities & Exploits