CyberWisdom Safe Harbor Commentary:
The January 2018 CPU addresses a number of security vulnerabilities, including security vulnerabilities affecting databases, middleware, Java, PeopleSoft, Siebel and E-Business Suite applications. In particular, Oracle’s January CPU includes patches for the Meltdown (CVE-2017-5754) and Specter (CVE-2017-5753 and CVE-2017-5715) processor vulnerabilities announced on January 3.
Other issues that Oracle patched in January’s CPU include a couple of key vulnerabilities in the Oracle E-Business Suite (EBS) reported by security firm Onapsis (CVE-2018-2655 and CVE-2018-2656). EBS defects can be remotely exploited without user authentication. According to Onapsis, an attacker can execute arbitrary queries in the database to obtain or modify private information.
thumbnail courtesy of eweek.com.
If you like to receive more of these curated safe harbor news alerts then subscribe to my mailing list. and come back soon at https://www.safeharboroncyber.com/Blog/ to read further CyberWisdom Safe Harbor Commentaries. Home » Curated SafeHarboronCyber’s CyberWisdom Post »