Tag: oracle

Django Security Update, Patch for DoS SQL Injection Vulnerability

Dec 6, 2024 10:48 AM

Tags: attack, cyber, dos, injection, oracle, risk, service, sql, update, vulnerability

The Django team has issued critical security updates for versions 5.1.4, 5.0.10, and 4.2.17. These updates address two vulnerabilities: a potential denial-of-service (DoS) attack in the strip_tags() method and a high-severity SQL injection risk in Oracle databases. All developers and system administrators using affected versions are strongly encouraged to update to the newly released versions to ensure…
Oracle’s Java price hikes push CIOs to brew new licensing strategies

Dec 4, 2024 8:48 AM

Tags: cio, open-source, oracle, strategy

Users could save 50% with open source alternatives, says expert First seen on theregister.com Jump to article: www.theregister.com/2024/12/02/oracle_java_cio/
Termine 2025 – Wann ist Oracle Patchday 2025?

Dec 2, 2024 4:28 PM

Tags: oracle

First seen on security-insider.de Jump to article: www.security-insider.de/oracle-patches-2025-a-2983873f621bc8bfafd15b6020635f6b/
Veeam fördert Datenfreiheit und unterstützt Oracle Linux Virtualization Manager

Dec 1, 2024 7:27 PM

Tags: linux, oracle, veeam

Mit der neuen Unterstützung für den Oracle Linux Virtualization Manager können Anwender umfassenden Schutz im großen Maßstab erzielen und dabei auf vo… First seen on infopoint-security.de Jump to article: www.infopoint-security.de/veeam-foerdert-datenfreiheit-und-unterstuetzt-oracle-linux-virtualization-manager/a37115/
AWS bends to Broadcom’s will with VMware Cloud Foundation asservice

Nov 27, 2024 12:10 PM

Tags: cloud, ibm, microsoft, oracle, service, vmware

Microsoft, Oracle, and IBM are all doing it. Andy Jassy’s rent-a-server shop may have felt it was leaving money on the table First seen on theregister.com Jump to article: www.theregister.com/2024/11/26/amazon_elastic_vmware_service_preview/
U.S. CISA adds Apple, Oracle Agile PLM bugs to its Known Exploited Vulnerabilities catalog

Nov 22, 2024 1:55 PM

Tags: apple, cisa, cve, cybersecurity, exploit, infrastructure, kev, oracle, update, vulnerability, zero-day

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Apple, Oracle Agile PLM bugs to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added the following vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog: This week, Apple released security updates for two zero-day vulnerabilities, tracked as CVE-2024-44309 and CVE-2024-44308, in iOS, iPadOS,…
Oracle Linux 9 Update 5 brings security updates, OpenJDK 17, .NET 9.0

Nov 20, 2024 2:55 PM

Tags: cloud, linux, oracle, update

Oracle Linux offers a secure, streamlined platform for deploying and managing applications across on-premises, cloud, and edge environments. Designed for demanding workloads, … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/11/20/oracle-linux-9-update-5/
Oracle Patches Exploited Agile PLM Zero-Day

Nov 20, 2024 11:53 AM

Tags: exploit, oracle, zero-day

Oracle has patched a high-severity information disclosure zero-day in Agile PLM that has been exploited in the wild. The post Oracle Patches Exploited Agile PLM Zero-Day appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/oracle-patches-exploited-agile-plm-zero-day/
Angreifer attackieren Oracle Agile PLM

Nov 20, 2024 10:54 AM

Tags: oracle

Oracle hat aufgrund von laufenden Attacken auf Oracle Agile Product Lifecycle Management ein Sicherheitsupdate außer der Reihe veröffentlicht. First seen on heise.de Jump to article: www.heise.de/news/Notfall-Sicherheitspatch-Attacken-auf-Oracle-Agile-PLM-10075412.html
Notfall-Sicherheitspatch: Attacken auf Oracle Agile PLM

Nov 20, 2024 9:53 AM

Tags: oracle

Oracle hat aufgrund von laufenden Attacken auf Oracle Agile Product Lifecycle Management ein Sicherheitsupdate außer der Reihe veröffentlicht. First seen on heise.de Jump to article: www.heise.de/news/Notfall-Sicherheitspatch-Attacken-auf-Oracle-Agile-PLM-10075412.html
Oracle Warns of Agile PLM Vulnerability Currently Under Active Exploitation

Nov 20, 2024 6:58 AM

Tags: authentication, cve, exploit, flaw, framework, leak, network, oracle, sans, vulnerability

Oracle is warning that a high-severity security flaw impacting the Agile Product Lifecycle Management (PLM) Framework has been exploited in the wild.The vulnerability, tracked as CVE-2024-21287 (CVSS score: 7.5), could be exploited sans authentication to leak sensitive information.”This vulnerability is remotely exploitable without authentication, i.e., it may be exploited over a network First seen on…
Oracle warns of Agile PLM file disclosure flaw exploited in attacks

Nov 19, 2024 9:53 PM

Tags: attack, cve, exploit, flaw, oracle, zero-day

Oracle has fixed an unauthenticated file disclosure flaw in Oracle Agile Product Lifecycle Management (PLM) tracked as CVE-2024-21287, which was actively exploited as a zero-day to download files. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/oracle-warns-of-agile-plm-file-disclosure-flaw-exploited-in-attacks/
Oracle patches exploited Agile PLM vulnerability (CVE-2024-21287)

Nov 19, 2024 11:53 AM

Tags: cve, exploit, framework, oracle, update, vulnerability

Oracle has released a security patch for CVE-2024-21287, a remotely exploitable vulnerability in the Oracle Agile PLM Framework that is, according to Tenable researchers, … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/11/19/cve-2024-21287/
The Magic ITAM Formula for Navigating Oracle Java Licensing

Nov 14, 2024 11:53 AM

Tags: finance, oracle

IT asset managers have their hands full when they’re trying to strike the best path forward for their companies’ use of Java. Finance leaders at many companies are turning to ITAM professionals and asking them to reduce the cost of Java with a magic ITAM formula. Azul Vice President of Worldwide Channel Sales Simon Taylor……
Europe’s largest local authority slammed for ‘poorest’ ERP rollout ever

Nov 10, 2024 11:03 AM

Tags: government, oracle, skills

Government-appointed commissioners say Birmingham severely lacked Oracle skills during disastrous implementation First seen on theregister.com Jump to article: www.theregister.com/2024/11/08/birmingham_oracle_erp_rollout/
Feds Warn Health Sector of an Array of Cyberthreats

Nov 9, 2024 12:03 AM

Tags: attack, exploit, flaw, healthcare, oracle

HHS Alerts on Scattered Spider, Living of the Land, Miracle Exploit, F5 Attacks. Federal authorities are warning the healthcare sector of an array of cyberthreats – including Scattered Spider hacks, living-off-the-land attacks, and bad actors looking to exploit weaknesses such as F5 misconfigurations and also so-called Miracle Exploit flaws in some Oracle software. First seen…
Oracle WebLogic Server Remote Code Execution Vulnerability (CVE-2024-21216)

Nov 8, 2024 7:04 PM

Tags: cve, cyber, data, network, oracle, remote-code-execution, vulnerability

Overview Recently, NSFOCUS CERT detected that Oracle issued a security announcement and fixed the deserialization vulnerability in WebLogic Server (CVE-2024-21216). Since WebLogic does not strictly filter incoming data through the T3/IIOP protocol, when the T3/IIOP protocol is enabled, an unauthenticated remote attacker sends a special request to the server through the T3/IIOP protocol to execute…The…
Exploits trotz vorhandenen Patches – Oracle veröffentlicht 334 Sicherheitspatches

Oct 28, 2024 3:55 PM

Tags: exploit, oracle

First seen on security-insider.de Jump to article: www.security-insider.de/oracle-veroeffentlicht-334-sicherheitsupdates-oktober-a-aed388aaa2b5c4db91f745a9aead4191/
Oracle schützt Softwareprodukte mit 334 Sicherheitsupdates

Oct 28, 2024 7:56 AM

Tags: oracle

First seen on heise.de Jump to article: www.heise.de/news/Oracle-schuetzt-Softwareprodukte-mit-334-Sicherheitsupdates-9984558.html
Larry Ellison: Oracle-CTO träumt vom perfekten KI-Überwachungsstaat

Oct 26, 2024 10:52 AM

Tags: ai, oracle

First seen on tarnkappe.info Jump to article: tarnkappe.info/artikel/kuenstliche-intelligenz/larry-ellison-oracle-cto-traeumt-vom-perfekten-ki-ueberwachungsstaat-301576.html
Medtech startup brings Oracle AI to bear on cancer drug research

Oct 23, 2024 11:26 AM

Tags: ai, cloud, infrastructure, oracle, startup

Learn how Oracle Cloud Infrastructure and its cutting-edge AI features are bringing new benefits to cancer care by helping doctors identify better tre… First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366611519/Medtech-startup-brings-Oracle-AI-to-bear-on-cancer-drug-research
Someone’s finally taking on £10M Hull City Council ERP deal to replace Oracle

Oct 20, 2024 12:58 PM

Tags: oracle

First seen on theregister.com Jump to article: www.theregister.com/2024/10/18/workday_erp_hull_city_council/
Oracle Patches Over 200 Vulnerabilities With October 2024 CPU

Oct 16, 2024 10:34 PM

Tags: cve, oracle, update, vulnerability

Oracle has released 334 new security patches to address roughly 220 unique CVEs as part of its October 2024 Critical Patch Update. The post Oracle Pat… First seen on securityweek.com Jump to article: www.securityweek.com/oracle-patches-over-200-vulnerabilities-with-october-2024-cpu/
Oracle October 2024 Critical Patch Update Addresses 198 CVEs

Oct 16, 2024 9:54 AM

Tags: cve, oracle, update

Oracle addresses 198 CVEs in its fourth quarterly update of 2024 with 334 patches, including 35 critical updates. Background On October 15, O… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/10/oracle-october-2024-critical-patch-update-addresses-198-cves/
‘Hadooken’ Linux malware targets Oracle WebLogic servers

Oct 7, 2024 9:00 PM

Tags: linux, malware, oracle

First seen on theregister.com Jump to article: www.theregister.com/2024/09/13/hadooken_attacks_oracle_weblogic/
Oracle und KI: Die Überwachungsfantasie des Larry Ellison

Oct 4, 2024 1:39 PM

Tags: ai, oracle

Nach Ansicht von Oracle-Gründer Ellison sollte möglichst alles mit KI-basierten Kameras überwacht werden. Dann zeigten sich die Bürger von der besten … First seen on golem.de Jump to article: www.golem.de/news/oracle-und-ki-die-ueberwachungsfantasie-des-larry-ellison-2409-189023.html
OCI GenAI Agents mit RAG-Funktionen – Oracle präsentiert neue KI-Agenten für optimierte Geschäftsabläufe

Oct 2, 2024 1:37 PM

Tags: ai, oracle

First seen on security-insider.de Jump to article: www.security-insider.de/oracle-praesentiert-neue-ki-agenten-fuer-optimierte-geschaeftsablaeufe-a-be108c55e46a913fdc5248f4b1533928/
IBM and Oracle to support 280,000 users after winning mega ERP govt tech contract

Sep 29, 2024 3:36 PM

Tags: government, ibm, oracle

First seen on theregister.com Jump to article: www.theregister.com/2024/09/27/ibm_and_oracle_uk_contract/
New Linux Malware Campaign Exploits Oracle Weblogic to Mine Cryptocurrency

Sep 24, 2024 1:13 PM

Tags: crypto, cybersecurity, exploit, linux, malware, oracle

Cybersecurity researchers have uncovered a new malware campaign targeting Linux environments to conduct illicit cryptocurrency mining.The activity, wh… First seen on thehackernews.com Jump to article: thehackernews.com/2024/09/new-linux-malware-campaign-exploits.html
U.S. CISA adds Microsoft Windows, Apache HugeGraph-Server, Oracle JDeveloper, Oracle WebLogic Server, and Microsoft SQL Server bugs to its Known Exploited Vulnerabilities catalog

Sep 21, 2024 6:29 PM

Tags: apache, cisa, cybersecurity, exploit, infrastructure, kev, microsoft, oracle, sql, vulnerability, windows

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Microsoft Windows, Apache HugeGraph-Server, Oracle JDeveloper, Oracle WebLogic Serve… First seen on securityaffairs.com Jump to article: securityaffairs.com/168592/security/u-s-cisa-windows-apache-hugegraph-oracle-jdeveloper-oracle-weblogic-sql-server-bugs-to-its-known-exploited-vulnerabilities-catalog.html