Saturday , July 18 2026
Oracle Critical Patch

Oracle Critical Pre-Release update addressed 320 flaw

Oracle Critical Patch Update Pre-Release Announcement shares details about the upcoming update scheduled for January 21, 2025. Note that this information may change before the official advisory is released.

A Critical Patch Update contains patches for various security vulnerabilities. This update includes 320 new patches, some of which affect multiple products. Oracle strongly urges customers to apply these patches promptly due to the serious threat of attacks.

Windows LegacyHive 0, AWS, Fortinet, TP-LINK multiple flaws got hackers attention

A Windows security flaw called LegacyHive (MSNightmare) misuses the User Profile Service. This allows local users to gain higher privileges,...
Read More
Windows LegacyHive 0, AWS, Fortinet, TP-LINK multiple flaws got hackers attention

CVE-2026-53412
Zoom Warns of critical account takeover Flaw via Network Access

Zoom has issued updates for a flaw in the Windows desktop client, known as CVE-2026-53412. This issue may allow an...
Read More
CVE-2026-53412  Zoom Warns of critical account takeover Flaw via Network Access

India to built Mythos-like AI model “Sarvam AI” and “BharatGen” assigned

India is speeding up its work to make homegrown AI models for cybersecurity. These models will help protect important digital...
Read More
India to built Mythos-like AI model “Sarvam AI” and “BharatGen” assigned

Cursor, SonicWall, SharePoint 0-day exploited to the wild

A serious security flaw in Cursor, a popular AI code editor used by more than 7 million developers, lets attackers...
Read More
Cursor, SonicWall, SharePoint 0-day exploited to the wild

Microsoft Patch Tuesday July-2026 fixes 570 flaws, 3 zero-days

Microsoft's Patch Tuesday in July 2026 fixes around 570 security flaws in its products. This comes after June's big update,...
Read More
Microsoft Patch Tuesday July-2026 fixes 570 flaws, 3 zero-days

Fortinet Patches 7 Flaws In FortiOS, FortiProxy, FortiPAM, and FortiSandbox

Fortinet fixes seven new security warnings on July 14, 2026. These affect FortiOS, FortiProxy, FortiPAM, and FortiSandbox. The issues vary...
Read More
Fortinet Patches 7 Flaws In FortiOS, FortiProxy, FortiPAM, and FortiSandbox

CISA warns Cisco IOS flaw, while VMware flaw allows bypassing authentication

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has warned that hackers are using CVE-2008-4128, a CSRF flaw in Cisco...
Read More
CISA warns Cisco IOS flaw, while VMware flaw allows bypassing authentication

Meta’s louisiana data center to exceed 250 billion price tag

Meta announced on Monday that its data center in Richland Parish, Louisiana, will grow to 5 gigawatts of computing power....
Read More
Meta’s louisiana data center to exceed 250 billion price tag

Ransomware Crisis in 2026: 5,064 Organizations Affected in 135 Countries

Global ransomware attacks stayed very high in the first seven months of 2026. There were 5,064 confirmed victims in 135...
Read More
Ransomware Crisis in 2026: 5,064 Organizations Affected in 135 Countries

Palo Alto Networks Addresses 13 Vulnerabilities

Palo Alto Networks shared warnings on Wednesday about over twelve security issues in its products. The new warnings include 13 security...
Read More
Palo Alto Networks Addresses 13 Vulnerabilities

Key Highlights from the Update:

Oracle Database Server:

The update adds five security patches for Oracle Database Server, addressing two remotely exploitable vulnerabilities without authentication. The highest CVSS score is 7.5, indicating significant risk. Supported versions are Oracle Database Server 19.x, 21.x, and 23.x.

Oracle Communications Applications:

There are 86 new security patches, 59 of which can be exploited remotely. These patches address significant vulnerabilities, with a maximum CVSS score of 9.8, indicating critical risks. Affected products include Oracle Communications Cloud Native Core, Unified Data Repository, and Session Border Controller.

Oracle MySQL:

The update includes 39 security patches for Oracle MySQL, four of which can be exploited remotely. The most severe vulnerability has a CVSS score of 9.1 and affects MySQL Server versions 8.0.40 and earlier.

Oracle Financial Services Applications:

This category addresses 32 vulnerabilities, including 24 that can be exploited remotely, and has a maximum CVSS score of 9.8, indicating severe threats to products like Oracle Banking and Compliance Studio.

Oracle Fusion Middleware:

Twenty-one patches were released for Fusion Middleware, 17 of which can be exploited remotely. Affected products include Oracle WebLogic Server and Identity Manager, with a CVSS score reaching 9.8.

The most severe vulnerabilities are in Oracle Communications Applications and Fusion Middleware, both with a CVSS score of 9.8. These allow attackers to exploit systems over a network without needing authentication.

“Due to the threat posed by a successful attack, Oracle strongly recommends that customers apply Critical Patch Update patches as soon as possible,” the pre-release announcement states.

OWASP Reveils Top 10 Smart Contract Vulnerabilities for 2025

Check Also

5

TP-Link alerts users to patch router auth bypass vulnerability

TP-Link fixed some security flaws in its Archer NX routers. CVE-2025-15517 is a security flaw …