Vulnerability is linked with deserialization and allows remote attacker to achieve execution of any commands without authorization (with the help of special HTTP-request).
Situations was complicated by the fact that intruders have already used this issue. As Oracle launched quarterly set of patches for its products relatively recently, specialists suggested that patch for 0-day vulnerability will arrive only in June 2019 as a part of next quarterly set of updates.
Fortunately, experts were wrong this time. Oracle made untypical gesture and presented urgent unplanned patch for this issues. Vulnerability got identifier CVE-2019-2725 and scored 9.8 points in 10-point CVSS vulnerability scale.
As issue is immensely serious, developers urge users to install updates as soon as possible.
“Due to the severity of this vulnerability, Oracle strongly recommends that customers apply the updates provided by this Security Alert as soon as possible”, – wrote Oracle developers
Source: https://www.oracle.com
About Pbmsoultions.com Pbmsoultions.com pop-ups can not launch out of the blue. If you have actually…
About Prizestash.com Prizestash.com pop-ups can not expose out of the blue. If you have actually…
About Verifiedbreaking.com Verifiedbreaking.com pop-ups can not launch out of nowhere. If you have actually clicked…
About Themoneyminutes.com Themoneyminutes.com pop-ups can not launch out of the blue. If you have actually…
About News-xcidizi.com News-xcidizi.com pop-ups can not introduce out of nowhere. If you have clicked some…
About Everytraffic-flow.com Everytraffic-flow.com pop-ups can not launch out of nowhere. If you have actually clicked…