Oracle has released 318 new security patches to address roughly 200 unique CVEs as part of its January 2025 Critical Patch Update.
January 22, 2025 By Ionut Arghire
Oracle on Tuesday announced the release of 318 new security patches as part of its January 2025 Critical Patch Update (CPU), including over 180 fixes for vulnerabilities that can be exploited remotely without authentication.
SecurityWeek has identified roughly 220 unique CVEs in Oracle’s January 2025 CPU. Approximately 30 of the new security patches resolve critical-severity flaws.
For the fourth time in a row, Oracle Communications received the highest number of new patches, at 85. Of the resolved vulnerabilities, 59 can be exploited remotely without authentication.
On Tuesday, Oracle also announced the release of 39 new security patches for MySQL, including fixes for four bugs that can be exploited by remote, unauthenticated attackers.
