Update flood: Oracle releases 337 patches for January CPU

Oracle releases bundled security updates quarterly. In January, Oracle delivers 337 updates for the Critical Patch Update.
Hosted on MSN

Oracle races to patch a another zero-day following rise in attacks

Oracle patched CVE-2025-61884, a critical unauthenticated E-Business Suite vulnerability ShinyHunters allegedly exploited the flaw to steal sensitive corporate data from multiple organizations This is ...
CSOonline

Oracle releases 337 security patches, including fix for critical Apache Tika flaw

Oracle has handed security teams their first big patching workload of the year, with its latest quarterly update containing a hefty 337 security fixes across its product range, including 27 rated ...
CRN

Oracle Now Says ‘Critical’ Zero-Day Flaw Behind Data Extortion Attacks, Releases Patch

The disclosure follows reports that the cybercriminal group Clop has been extorting a significant number of E-Business Suite customers. Oracle is now linking a widespread data extortion campaign ...
Security Boulevard

Imperva Customers Protected Against CVE-2026-21962 in Oracle HTTP and WebLogic

CVE-2026-21962 is a critical (CVSS 10.0) vulnerability in the Oracle HTTP Server and the WebLogic Server Proxy Plug-in for Apache HTTP Server and Microsoft IIS. An unauthenticated attacker with HTTP ...