Oracle Releases January 2025 Patch for 318 Vulnerabilities
/ 1 min read
🔒✨ Oracle issues critical patch update addressing 318 security vulnerabilities. The January 2025 Critical Patch Update (CPU) from Oracle targets numerous security flaws across its products, with the most severe being a critical vulnerability in the Oracle Agile Product Lifecycle Management (PLM) Framework (CVE-2025-21556), which has a CVSS score of 9.9 and could allow attackers to take control of affected systems. Oracle has also noted active exploitation attempts against another vulnerability in the same product. The update includes patches for various other critical vulnerabilities, including those in JD Edwards EnterpriseOne Tools and Oracle WebLogic Server. Users are strongly urged to apply these patches to mitigate potential security risks.
