Oracle is urging customers to patch critical vulnerabilities in its products as part of its massive April update, which fixes 297 flaws. Products with the most vulnerabilities include the Oracle Fusion Middleware, Oracle E-Business Suite and Oracle MySQL. Oracle recommends that its customers update as soon as possible as many of the vulnerabilities are critical and could be exploited remotely without authentication. Forty-two of those flaws could be remotely exploitable without authentication, meaning they may be exploited over a network without requiring user credentials. Oracle s last critical patch update, issued in January, issued 284 ing fixes, patching 284 of those vulnerabilities.
Source: https://threatpost.com/oracle-squashes-53-critical-bugs-in-april-security-update/143845/