Oracle Quarterly Critical Patches Issued July 20, 2021
MS-ISAC ADVISORY NUMBER:
2021-093DATE(S) ISSUED:
07/20/2021OVERVIEW:
Multiple vulnerabilities have been discovered in Oracle products, which could allow for remote code execution.
RISK:
Government:
Large and medium government entities
Small government
Businesses:
Large and medium business entities
Small business entities
Home Users:
RECOMMENDATIONS:
We recommend the following actions be taken:
- Apply appropriate patches or appropriate mitigations provided by Oracle to vulnerable systems immediately after appropriate testing.
- Run all software as a non-privileged user (one without administrative rights) to diminish the effects of a successful attack.
- Remind all users not to visit untrusted websites or follow links provided by unknown or untrusted sources.
- Inform and educate users regarding threats posed by hypertext links contained in emails or attachments especially from untrusted sources.
- Apply the Principle of Least Privilege to all systems and