CSO Online

Oracle’s first monthly patch release fixes 35 flaws, including 11 rated ‘critical’

Oracle has released the first security fixes in its new monthly Critical Security Patch Update (CSPU) cycle, designed to ...
SecurityWeek

Oracle’s First Monthly Patches Resolve 77 Vulnerabilities

Oracle has released its first monthly Critical Security Patch Update (CSPU) to resolve 77 vulnerabilities across its products ...

Oracle CSPU: 35 Security Updates in May

In the overview of the CSPU in May 2026, Oracle developers write that they are addressing 35 vulnerabilities in various ...

CISA Flags 2-Year-Old Oracle WebLogic Vulnerability as Actively Exploited

CISA added Oracle WebLogic flaw CVE-2024-21182 to its KEV catalog, giving federal agencies until June 4 to patch exposed ...
CRN

Oracle Now Says ‘Critical’ Zero-Day Flaw Behind Data Extortion Attacks, Releases Patch

The disclosure follows reports that the cybercriminal group Clop has been extorting a significant number of E-Business Suite customers. Oracle is now linking a widespread data extortion campaign ...
CSO Online

Two-year old Oracle WebLogic Server vulnerability is being exploited

Its inclusion in the US CISA catalog of known exploited vulnerabilities is a warning to admins that patching is needed now.
Bleeping Computer

CISA flags two-year-old Oracle flaw as actively exploited in attacks

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has ordered government agencies to secure their systems against a high-severity Oracle WebLogic Server vulnerability that was patched ...
TechRepublic

Critical Oracle EBS Flaw Could Expose Sensitive Data

Oracle patches a high-severity EBS flaw that could let attackers bypass authentication and access sensitive enterprise data. Oracle has released a patch for a severe vulnerability in its E-Business ...