286 of those vulnerabilities are remotely exploitable across nearly two dozen product lines. Oracle will detail 405 new security vulnerabilities Tuesday, part of its quarterly Critical Patch Update Advisory. The mammoth update also includes medium-severity flaws for its Java Platform, Standard Edition (Java SE), use for developing and deploying Java applications. Oracle s Fusion Middleware family of software has 56 new security patches affecting nearly 20 related services, including Identity Manager Connector (v. 9.0), Big Data Discovery (v 1.1.6) and WebCenter Portal.
Source: https://threatpost.com/oracle-tackles-405-bugs-for-april-quarterly-patch-update/154737/