This image has an empty alt attribute; its file name is Ncert-Advisory-Template-v2-2.jpg

Oracle has released a Critical Patch Update for April, which is a collection of patches for multiple security vulnerabilities affecting Oracle products and third-party components included in Oracle products. Successful exploitation of some of these vulnerabilities could allow threat actors to gain access to the affected products. Kindly refer to Section B for the list of affected products.

______________________________

A. Actions to be Taken

Review and apply the necessary patch/es provided by Oracle.

Proactively monitor and secure identified systems and devices for any suspicious/malicious activities.

In addition, providing and capacitating employees with cybersecurity knowledge and information to minimize the attack surface.

For additional information, kindly refer to the official advisories:

______________________________

B. List of Affected Products and Patch

Affected Products and VersionsPatch Availability Document
Engineered Systems Utilities, versions 12.1.0.2, 19c, 21cOracle Autonomous Health Framework
Enterprise Manager Base Platform, versions 13.4.0.0, 13.5.0.0Enterprise Manager
Enterprise Manager for Peoplesoft, versions 13.4.1.1, 13.5.1.1Enterprise Manager
Enterprise Manager for Storage Management, version 13.4.0.0Enterprise Manager
Enterprise Manager Ops Center, version 12.4.0.0Enterprise Manager
Helidon, versions 1.4.7, 1.4.10, 2.0.0-RC1Helidon
Instantis EnterpriseTrack, versions 17.1, 17.2, 17.3Oracle Construction and Engineering Suite
JD Edwards EnterpriseOne Tools, versions prior to 9.2.6.3JD Edwards
JD Edwards World Security, version A9.4JD Edwards
Management Cloud Engine, versions 1.5.0 and priorOracle Management Cloud Engine
Middleware Common Libraries and Tools, versions 12.2.1.3.0, 12.2.1.4.0, 14.1.1.0.0Fusion Middleware
MySQL Cluster, versions 7.4.35 and prior, 7.5.25 and prior, 7.6.21 and prior, 8.0.28 and priorMySQL
MySQL Connectors, versions 8.0.28 and priorMySQL
MySQL Enterprise Monitor, versions 8.0.29 and priorMySQL
MySQL Server, versions 5.7.37 and prior, 8.0.28 and priorMySQL
MySQL Workbench, versions 8.0.28 and priorMySQL
Oracle Advanced Supply Chain Planning, versions 12.1, 12.2Oracle Supply Chain Products
Oracle Agile Engineering Data Management, version 6.2.1.0Oracle Supply Chain Products
Oracle Agile PLM, version 9.3.6Oracle Supply Chain Products
Oracle Agile PLM MCAD Connector, version 3.6Oracle Supply Chain Products
Oracle Application Express, versions prior to 22.1Database
Oracle Application Testing Suite, version 13.3.0.1Enterprise Manager
Oracle Autovue for Agile Product Lifecycle Management, version 21.0.2Oracle Supply Chain Products
Oracle Banking Deposits and Lines of Credit Servicing, version 2.12.0Contact Support
Oracle Banking Enterprise Default Management, versions 2.7.1, 2.10.0, 2.12.0Oracle Banking Platform
Oracle Banking Loans Servicing, version 2.12.0Contact Support
Oracle Banking Party Management, version 2.7.0Oracle Banking Platform
Oracle Banking Payments, version 14.5Contact Support
Oracle Banking Platform, versions 2.6.2, 2.7.1, 2.12.0Oracle Banking Platform
Oracle Banking Trade Finance, version 14.5Contact Support
Oracle Banking Treasury Management, version 14.5Contact Support
Oracle Blockchain Platform, versions prior to 21.1.2Oracle Blockchain Platform
Oracle Business Intelligence Enterprise Edition, versions 5.5.0.0.0, 5.9.0.0.0, 12.2.1.3.0, 12.2.1.4.0Oracle Analytics
Oracle Business Process Management Suite, versions 12.2.1.3.0, 12.2.1.4.0Fusion Middleware
Oracle Coherence, versions 12.2.1.3.0, 12.2.1.4.0, 14.1.1.0.0Fusion Middleware
Oracle Commerce Guided Search, version 11.3.2Oracle Commerce
Oracle Communications ASAP, version 7.3Oracle Communications ASAP
Oracle Communications Billing and Revenue Management, versions 12.0.0.4, 12.0.0.5Oracle Communications Billing and Revenue Management
Oracle Communications Cloud Native Core Automated Test Suite, versions 1.8.0, 1.9.0, 22.1.0Oracle Communications Cloud Native Core Automated Test Suite
Oracle Communications Cloud Native Core Binding Support Function, version 1.11.0Oracle Communications Cloud Native Core Binding Support Function
Oracle Communications Cloud Native Core Console, versions 1.9.0, 22.1.0Oracle Communications Cloud Native Core Console
Oracle Communications Cloud Native Core Network Exposure Function, version 22.1.0Oracle Communications Cloud Native Core Network Exposure Function
Oracle Communications Cloud Native Core Network Function Cloud Native Environment, versions 1.10.0, 22.1.0Oracle Communications Cloud Native Core Network Function Cloud Native Environment
Oracle Communications Cloud Native Core Network Repository Function, versions 1.15.0, 1.15.1, 22.1.0Oracle Communications Cloud Native Core Network Repository Function
Oracle Communications Cloud Native Core Network Slice Selection Function, versions 1.8.0, 22.1.0Oracle Communications Cloud Native Core Network Slice Selection Function
Oracle Communications Cloud Native Core Policy, versions 1.14.0, 1.15.0, 22.1.0Oracle Communications Cloud Native Core Policy
Oracle Communications Cloud Native Core Security Edge Protection Proxy, versions 1.7.0, 22.1.0Oracle Communications Cloud Native Core Security Edge Protection Proxy
Oracle Communications Cloud Native Core Service Communication Proxy, version 1.15.0Oracle Communications Cloud Native Core Service Communication Proxy
Oracle Communications Cloud Native Core Unified Data Repository, versions 1.15.0, 22.1.0Oracle Communications Cloud Native Core Unified Data Repository
Oracle Communications Contacts Server, version 8.0.0.6.0Oracle Communications Contacts Server
Oracle Communications Convergence, versions 3.0.2.2, 3.0.3.0Oracle Communications Convergence
Oracle Communications Convergent Charging Controller, versions 6.0.1.0.0, 12.0.1.0.0-12.0.4.0.0Oracle Communications Convergent Charging Controller
Oracle Communications Design Studio, versions 7.3.5, 7.4.0-7.4.2Oracle Communications Design Studio
Oracle Communications Diameter Intelligence Hub, versions 8.0.0-8.2.3Oracle Communications Diameter Signaling Router
Oracle Communications Diameter Signaling Router, version 8.4.0.0Oracle Communications Diameter Signaling Router
Oracle Communications EAGLE Application ProcessorOracle Communications EAGLE Application Processor
Oracle Communications EAGLE Element Management System, version 46.6Oracle Communications EAGLE Element Management System
Oracle Communications EAGLE FTP Table Base Retrieval, version 4.5Oracle Communications EAGLE FTP Table Base Retrieval
Oracle Communications EAGLE LNP Application Processor, versions 10.1, 10.2Oracle Communications EAGLE LNP Application Processor
Oracle Communications EAGLE Software, versions 46.7.0, 46.8.0-46.8.2, 46.9.1-46.9.3Oracle Communications EAGLE (Software)
Oracle Communications Element Manager, versions prior to 9.0Oracle Communications Element Manager
Oracle Communications Evolved Communications Application Server, version 7.1Oracle Communications Evolved Communications Application Server
Oracle Communications Instant Messaging Server, version 10.0.1.5.0Oracle Communications Instant Messaging Server
Oracle Communications Interactive Session Recorder, version 6.4Oracle Communications Interactive Session Recorder
Oracle Communications IP Service Activator, version 7.4.0Oracle Communications IP Service Activator
Oracle Communications Messaging Server, version 8.1Oracle Communications Messaging Server
Oracle Communications MetaSolv Solution, version 6.3.1Oracle Communications MetaSolv Solution
Oracle Communications Network Charging and Control, versions 6.0.1.0.0, 12.0.1.0.0-12.0.4.0.0Oracle Communications Network Charging and Control
Oracle Communications Network Integrity, versions 7.3.2, 7.3.5, 7.3.6Oracle Communications Network Integrity
Oracle Communications Operations Monitor, versions 4.3, 4.4, 5.0Oracle Communications Operations Monitor
Oracle Communications Order and Service Management, versions 7.3, 7.4Oracle Communications Order and Service Management
Oracle Communications Performance Intelligence Center (PIC) Software, versions 10.3.0.0.0-10.3.0.2.1, 10.4.0.1.0-10.4.0.3.1Oracle Communications Performance Intelligence Center (PIC) Software
Oracle Communications Policy Management, versions 12.5.0.0.0, 12.6.0.0.0Oracle Communications Policy Management
Oracle Communications Pricing Design Center, versions 12.0.0.4, 12.0.0.5Oracle Communications Pricing Design Center
Oracle Communications Services Gatekeeper, version 7.0.0.0.0Oracle Communications Services Gatekeeper
Oracle Communications Session Border Controller, versions 8.4, 9.0Oracle Communications Session Border Controller
Oracle Communications Session Report Manager, versions prior to 9.0Oracle Communications Session Report Manager
Oracle Communications Session Route Manager, versions prior to 9.0Oracle Communications Session Route Manager
Oracle Communications Unified Inventory Management, versions 7.4.1, 7.4.2Oracle Communications Unified Inventory Management
Oracle Communications Unified Session Manager, versions 8.2.5, 8.4.5Oracle Communications Unified Session Manager
Oracle Communications User Data Repository, version 12.4Oracle Communications User Data Repository
Oracle Communications WebRTC Session Controller, version 7.2.1Oracle Communications WebRTC Session Controller
Oracle Data Integrator, versions 12.2.1.3.0, 12.2.1.4.0Fusion Middleware
Oracle Database Server, versions 12.1.0.2, 19c, 21cDatabase
Oracle Documaker, versions 12.6.0, 12.6.2-12.6.4, 12.7.0Oracle Insurance Applications
Oracle E-Business Suite, versions 12.2.4-12.2.11, [EBS Cloud Manager and Backup Module] prior to 22.1.1.1, [Enterprise Command Center] 7.0, [Enterprise Information Discovery] 7-9Oracle E-Business Suite
Oracle Enterprise Communications Broker, versions 3.2, 3.3Oracle Enterprise Communications Broker
Oracle Enterprise Session Border Controller, versions 8.4, 9.0Oracle Enterprise Session Border Controller
Oracle Ethernet Switch ES1-24, version 1.3.1Systems
Oracle Ethernet Switch TOR-72, version 1.2.2Systems
Oracle Financial Services Analytical Applications Infrastructure, versions 8.0.6.0-8.0.9.0, 8.1.0.0-8.1.2.0Oracle Financial Services Analytical Applications Infrastructure
Oracle Financial Services Behavior Detection Platform, versions 8.0.6.0-8.0.8.0, 8.1.1.0, 8.1.1.1, 8.1.2.0Oracle Financial Services Behavior Detection Platform
Oracle Financial Services Enterprise Case Management, versions 8.0.7.1, 8.0.7.2, 8.0.8.0, 8.0.8.1, 8.1.1.0, 8.1.1.1, 8.1.2.0Oracle Financial Services Enterprise Case Management
Oracle Financial Services Revenue Management and Billing, versions 2.7.0.0, 2.7.0.1, 2.8.0.0Oracle Financial Services Revenue Management and Billing
Oracle FLEXCUBE Universal Banking, versions 11.83.3, 12.1-12.4, 14.0-14.3, 14.5Contact Support
Oracle Global Lifecycle Management OPatchGlobal Lifecycle Management
Oracle GoldenGate, versions prior to 12.3.0.1.2, prior to 23.1Database
Oracle GoldenGate Application Adapters, versions prior to 23.1Database
Oracle GoldenGate Big Data and Application Adapters, versions prior to 23.1Database
Oracle GraalVM Enterprise Edition, versions 20.3.5, 21.3.1, 22.0.0.2Java SE
Oracle Health Sciences Empirica Signal, versions 9.1.0.6, 9.2.0.0Health Sciences
Oracle Health Sciences InForm, versions 6.2.1.1, 6.3.2.1, 7.0.0.0Health Sciences
Oracle Health Sciences InForm Publisher, versions 6.2.1.1, 6.3.1.1Health Sciences
Oracle Health Sciences Information Manager, versions 3.0.1-3.0.4HealthCare Applications
Oracle Healthcare Data Repository, versions 8.1.0, 8.1.1HealthCare Applications
Oracle Healthcare Foundation, versions 7.3.0.1-7.3.0.4HealthCare Applications
Oracle Healthcare Master Person Index, version 5.0.1HealthCare Applications
Oracle Healthcare Translational Research, versions 4.1.0, 4.1.1HealthCare Applications
Oracle Hospitality Suite8, versions 8.10.2, 8.11.0-8.14.0Oracle Hospitality Suite8
Oracle Hospitality Token Proxy Service, version 19.2Oracle Hospitality Token Proxy Service
Oracle HTTP Server, versions 12.2.1.3.0, 12.2.1.4.0Fusion Middleware
Oracle Hyperion BI+, versions prior to 11.2.8.0Oracle Enterprise Performance Management
Oracle Hyperion Calculation Manager, versions prior to 11.2.8.0Oracle Enterprise Performance Management
Oracle Hyperion Data Relationship Management, versions prior to 11.2.8.0, prior to 11.2.9.0Oracle Enterprise Performance Management
Oracle Hyperion Financial Management, versions prior to 11.2.8.0Oracle Enterprise Performance Management
Oracle Hyperion Infrastructure Technology, versions prior to 11.2.8.0Oracle Enterprise Performance Management
Oracle Hyperion Planning, versions prior to 11.2.8.0Oracle Enterprise Performance Management
Oracle Hyperion Profitability and Cost Management, versions prior to 11.2.8.0Oracle Enterprise Performance Management
Oracle Hyperion Tax Provision, versions prior to 11.2.8.0Oracle Enterprise Performance Management
Oracle Identity Management Suite, versions 12.2.1.3.0, 12.2.1.4.0Fusion Middleware
Oracle Identity Manager Connector, versions 9.1.0, 11.1.1.5.0Fusion Middleware
Oracle iLearning, versions 6.2, 6.3iLearning
Oracle Insurance Data Gateway, version 1.0.1Oracle Insurance Applications
Oracle Insurance Insbridge Rating and Underwriting, versions 5.2.0, 5.4.0-5.6.0, 5.6.1Oracle Insurance Applications
Oracle Insurance Policy Administration, versions 11.0.2, 11.1.0, 11.2.8, 11.3.0, 11.3.1Oracle Insurance Applications
Oracle Insurance Rules Palette, versions 11.0.2, 11.1.0, 11.2.8, 11.3.0, 11.3.1Oracle Insurance Applications
Oracle Internet Directory, versions 12.2.1.3.0, 12.2.1.4.0Fusion Middleware
Oracle Java SE, versions 7u331, 8u321, 11.0.14, 17.0.2, 18Java SE
Oracle JDeveloper, versions 12.2.1.3.0, 12.2.1.4.0Fusion Middleware
Oracle Managed File Transfer, versions 12.2.1.3.0, 12.2.1.4.0Fusion Middleware
Oracle Middleware Common Libraries and Tools, version 12.2.1.4.0Fusion Middleware
Oracle NoSQL DatabaseNoSQL Database
Oracle Outside In Technology, version 8.5.5Fusion Middleware
Oracle Payment Interface, versions 19.1, 20.3Oracle Payment Interface
Oracle Product Lifecycle Analytics, version 3.6.1.0Oracle Supply Chain Products
Oracle REST Data Services, versions prior to 21.2Database
Oracle Retail Bulk Data Integration, version 16.0.3Retail Applications
Oracle Retail Customer Insights, versions 15.0.2, 16.0.2Retail Applications
Oracle Retail Customer Management and Segmentation Foundation, versions 17.0-19.0Retail Applications
Oracle Retail Data Extractor for Merchandising, versions 15.0.2, 16.0.2Retail Applications
Oracle Retail EFTLink, versions 17.0.2, 18.0.1, 19.0.1, 20.0.1, 21.0.0Retail Applications
Oracle Retail Extract Transform and Load, version 13.2.8Retail Applications
Oracle Retail Financial Integration, versions 14.1.3.2, 15.0.3.1, 16.0.1-16.0.3, 19.0.0, 19.0.1Retail Applications
Oracle Retail Integration Bus, versions 14.1.3.2, 15.0.3.1, 16.0.1-16.0.3, 19.0.0, 19.0.1Retail Applications
Oracle Retail Invoice Matching, version 16.0.3Retail Applications
Oracle Retail Merchandising System, versions 16.0.3, 19.0.1Retail Applications
Oracle Retail Service Backbone, versions 14.1.3.2, 15.0.3.1, 16.0.1-16.0.3, 19.0.0, 19.0.1Retail Applications
Oracle Retail Store Inventory Management, versions 14.0.4.13, 14.1.3.5, 14.1.3.14, 15.0.3.3, 15.0.3.8, 16.0.3.7Retail Applications
Oracle Retail Xstore Office Cloud Service, versions 16.0.6, 17.0.4, 18.0.3, 19.0.2, 20.0.1Retail Applications
Oracle Retail Xstore Point of Service, versions 16.0.6, 17.0.4, 18.0.3, 19.0.2, 20.0.1, 21.0.0Retail Applications
Oracle SD-WAN Edge, versions 9.0, 9.1Oracle SD-WAN Edge
Oracle Secure BackupOracle Secure Backup
Oracle Secure Global Desktop, version 5.6Virtualization
Oracle Solaris, version 11Systems
Oracle Solaris Cluster, version 4Systems
Oracle SQL Developer, versions prior to 21.99Database
Oracle StorageTek ACSLS, version 8.5.1Systems
Oracle StorageTek Tape Analytics (STA), version 2.4Systems
Oracle Taleo Platform, versions prior to 22.1Oracle Taleo
Oracle Transportation Management, versions 6.4.3, 6.5.1Oracle Supply Chain Products
Oracle Tuxedo, version 12.2.2.0.0Fusion Middleware
Oracle Utilities Framework, versions 4.3.0.1.0-4.3.0.6.0, 4.4.0.0.0, 4.4.0.2.0, 4.4.0.3.0Oracle Utilities Applications
Oracle VM VirtualBox, versions prior to 6.1.34Virtualization
Oracle Web Services Manager, versions 12.2.1.3.0, 12.2.1.4.0Fusion Middleware
Oracle WebCenter Portal, versions 12.2.1.3.0, 12.2.1.4.0Fusion Middleware
Oracle WebCenter Sites, versions 12.2.1.3.0, 12.2.1.4.0Fusion Middleware
Oracle WebLogic Server, versions 12.2.1.3.0, 12.2.1.4.0, 14.1.1.0.0Fusion Middleware
Oracle ZFS Storage Appliance Kit, version 8.8Systems
OSS Support Tools, versions 2.12.42, 18.3Oracle Support Tools
PeopleSoft Enterprise CS Academic Advisement, version 9.2PeopleSoft
PeopleSoft Enterprise FIN Cash Management, version 9.2PeopleSoft
PeopleSoft Enterprise PeopleTools, versions 8.58, 8.59PeopleSoft
PeopleSoft Enterprise PRTL Interaction Hub, version 9.1PeopleSoft
Primavera Unifier, versions 17.7-17.12, 18.8, 19.12, 20.12, 21.12Oracle Construction and Engineering Suite