Mitel 0-day, 5-year-old Oracle RCE bug under active exploit
3 CVEs added to CISA's catalog
Security
8 Jan 2025 | 4
Adam Goodman of Duo Security has found a vulnerability in the 'vast majority' of Oracle MySQL databases that allows SSL to be stripped, exposing sensitive data to man-in-the-middle attackers. Goodman says Oracle attempted to sling a patch at the problem last year but did so only for some versions and further borked the effort …