Oracle April 2025 Critical Patch Update Addresses 171 CVEs

Oracle's April 2025 Critical Patch Update addresses 171 vulnerabilities across 32 product families. The update includes 378 patches, with 40 classified as critical severity. Most patches (54.5%) are of medium severity, followed by high (32.3%) and low (less than 1%). Oracle SQL Developer received the most patches (103), while Oracle Hyperion received 43. Several product families had a high number of patches addressing remotely exploitable vulnerabilities without authentication. The update is crucial for security, and users should apply all relevant patches immediately. Oracle provides detailed advisories and risk matrices for comprehensive information. Tenable offers plugins to identify affected systems. Further details are available on Oracle's website and Tenable's community. Applying the patches mitigates the risks associated with the identified vulnerabilities.