# Oracle 제품 보안 업데이트 권고\[2023-08/1] ## Oracle 제품 보안 업데이트 권고 ### □ 개요 o 오라클社 CPU에서 자사 제품의 보안 취약점 508개에 대한 패치 발표 \[1] ※ CPU(Critical Patch Update) : 오라클 중요 보안 업데이트 o 영향받는 버전을 사용 중인 시스템 사용자는 해결 방안에 따라 최신 버전으로 업데이트 권고 ### □ 영향받는 제품 및 패치 관련 문서
영향받는 제품패치 관련 문서
Application Management Pack for Oracle Utilities &Enterprise Taxation, versions 13.4.1.0.0, 13.5.1.0.0Oracle Utilities Applications
BI Publisher, versions 6.4.0.0.0, 7.0.0.0.0Oracle Analytics
JD Edwards EnterpriseOne Orchestrator, versions prior to 9.2.7.4JD Edwards
JD Edwards EnterpriseOne Tools, versions prior to 9.2.7.4JD Edwards
MySQL Cluster, versions 8.0.33 and priorMySQL
MySQL Connectors, versions 8.0.33 and priorMySQL
MySQL Enterprise Monitor, versions 8.0.34 and priorMySQL
MySQL Server, versions 5.7.42 and prior, 8.0.33 and priorMySQL
MySQL Workbench, versions 8.0.33 and priorMySQL
Oracle Access Manager, version 12.2.1.4.0Fusion Middleware
Oracle Agile Engineering Data Management, versions 6.2.1.0-6.2.1.8Oracle Supply Chain Products
Oracle Agile PLM, version 9.3.6Oracle Supply Chain Products
Oracle Application Express, versions [Application Express Administration] 18.2-22.2, [Application Express Customers Plugin] 18.2-22.2, [Application Express Team Calendar Plugin] 18.2-22.1Database
Oracle Application Testing Suite, version 13.3.0.1Oracle Enterprise Manager
Oracle AutoVue, versions 21.0.2.0-21.0.2.7Oracle Supply Chain Products
Oracle Autovue for Agile Product Lifecycle Management, version 21.0.2Oracle Supply Chain Products
Oracle BAM (Business Activity Monitoring), version 12.2.1.4.0Fusion Middleware
Oracle Banking APIs, versions 18.2.0.0.0, 18.3.0.0.0, 19.1.0.0.0, 19.2.0.0.0, 21.1.0.0.0, 22.1.0.0.0, 22.2.0.0.0Contact Support
Oracle Banking Branch, versions 14.5-14.7Contact Support
Oracle Banking Cash Management, versions 14.7.0.2.0, 14.7.1.0.0Contact Support
Oracle Banking Corporate Lending, versions 14.0-14.3, 14.5-14.7Contact Support
Oracle Banking Corporate Lending Process Management, versions 14.4-14.7Contact Support
Oracle Banking Credit Facilities Process Management, version 14.7.1.0.0Contact Support
Oracle Banking Digital Experience, versions 18.2.0.0.0, 18.3.0.0.0, 19.1.0.0.0, 19.2.0.0.0, 21.1.0.0.0, 22.1.0.0.0, 22.2.0.0.0Contact Support
Oracle Banking Liquidity Management, versions 14.5.0.8.0, 14.6.0.3.0, 14.6.0.4.0, 14.7.0.1.0, 14.7.0.2.0, 14.7.1.0.0Contact Support
Oracle Banking Origination, versions 14.5-14.7, 14.7.0Contact Support
Oracle Banking Payments, versions 14.5-14.7Contact Support
Oracle Banking Supply Chain Finance, versions 14.7.0.2.0, 14.7.1.0.0Contact Support
Oracle Banking Trade Finance, versions 14.0-14.3, 14.5-14.7Contact Support
Oracle Banking Trade Finance Process Management, versions 14.5.0.8.0, 14.6.0.4.0, 14.7.0.2.0, 14.7.1.0.0Contact Support
Oracle Banking Treasury Management, versions 14.5-14.7Contact Support
Oracle Big Data Spatial and Graph, version 3.0Database
Oracle Business Intelligence Enterprise Edition, versions 6.4.0.0.0, 7.0.0.0.0, 12.2.1.4.0Oracle Analytics
Oracle Business Process Management Suite, version 12.2.1.4.0Fusion Middleware
Oracle Coherence, versions 12.2.1.4.0, 14.1.1.0.0Fusion Middleware
Oracle Commerce Guided Search, version 11.3.2Oracle Commerce
Oracle Commerce Platform, versions 11.3.0, 11.3.1, 11.3.2Oracle Commerce
Oracle Communications Billing and Revenue Management, versions 12.0.0.4.0-12.0.0.8.0Oracle Communications Billing and Revenue Management
Oracle Communications BRM - Elastic Charging Engine, versions 12.0.0.4.0-12.0.0.8.0Oracle Communications BRM - Elastic Charging Engine
Oracle Communications Calendar Server, versions 8.0.0.2.0-8.0.0.7.0Oracle Communications Calendar Server
Oracle Communications Cloud Native Core Automated Test Suite, versions 22.4.1, 23.1.0, 23.1.1Oracle Communications Cloud Native Core Automated Test Suite
Oracle Communications Cloud Native Core Binding Support Function, versions 22.4.0, 23.1.0Oracle Communications Cloud Native Core Binding Support Function
Oracle Communications Cloud Native Core Console, versions 22.4.2, 23.1.1Oracle Communications Cloud Native Core Console
Oracle Communications Cloud Native Core Network Exposure Function, versions 22.4.3, 23.1.2Oracle Communications Cloud Native Core Network Exposure Function
Oracle Communications Cloud Native Core Network Function Cloud Native Environment, version 23.1.0Oracle Communications Cloud Native Core Network Function Cloud Native Environment
Oracle Communications Cloud Native Core Network Repository Function, versions 22.4.2, 22.4.3, 23.1.0, 23.1.1, 23.2.0Oracle Communications Cloud Native Core Network Repository Function
Oracle Communications Cloud Native Core Policy, versions 22.4.0, 23.1.0, 23.2.0Oracle Communications Cloud Native Core Policy
Oracle Communications Cloud Native Core Security Edge Protection Proxy, versions 22.3.2, 22.4.0, 22.4.3, 23.1.0, 23.1.1, 23.1.2Oracle Communications Cloud Native Core Security Edge Protection Proxy
Oracle Communications Cloud Native Core Service Communication Proxy, versions 22.4.0, 23.1.0Oracle Communications Cloud Native Core Service Communication Proxy
Oracle Communications Cloud Native Core Unified Data Repository, version 23.1.1Oracle Communications Cloud Native Core Unified Data Repository
Oracle Communications Contacts Server, versions 8.0.0.6.0-8.0.0.8.0Oracle Communications Contacts Server
Oracle Communications Converged Application Server - Service Controller, version 6.2.0Oracle Communications Converged Application Server - Service Controller
Oracle Communications Convergence, version 3.0.3.2Oracle Communications Convergence
Oracle Communications Convergent Charging Controller, versions 12.0.3.0.0-12.0.6.0.0Oracle Communications Convergent Charging Controller
Oracle Communications Design Studio, versions 7.4.0.7.0, 7.4.1.5.0, 7.4.2.8.0Oracle Communications Design Studio
Oracle Communications Diameter Signaling Router, version 8.6.0.0Oracle Communications Diameter Signaling Router
Oracle Communications Instant Messaging Server, version 10.0.1.7.0Oracle Communications Instant Messaging Server
Oracle Communications Messaging Server, version 8.1.0.21.0Oracle Communications Messaging Server
Oracle Communications Network Analytics Data Director, version 23.1.0Oracle Communications Network Analytics Data Director
Oracle Communications Network Charging and Control, versions 12.0.3.0.0-12.0.6.0.0Oracle Communications Network Charging and Control
Oracle Communications Network Integrity, version 7.3.6.4Oracle Communications Network Integrity
Oracle Communications Operations Monitor, versions 5.0, 5.1Oracle Communications Operations Monitor
Oracle Communications Order and Service Management, versions 7.3.5, 7.4.0, 7.4.1Oracle Communications Order and Service Management
Oracle Communications Pricing Design Center, versions 12.0.0.4.0-12.0.0.7.0Oracle Communications Pricing Design Center
Oracle Communications Unified Assurance, versions 5.5.0-5.5.17, 6.0.0-6.0.2Oracle Communications Unified Assurance
Oracle Communications Unified Inventory Management, versions 7.4.0-7.4.2, 7.5.0Oracle Communications Unified Inventory Management
Oracle Data Integrator, version 12.2.1.4.0Fusion Middleware
Oracle Database Server, versions 19.3-19.19, 21.3-21.10Database
Oracle Documaker, versions 12.6.1-12.7.1Oracle Insurance Applications
Oracle E-Business Suite, versions 12.2.3-12.3.12Oracle E-Business Suite
Oracle Enterprise Data Quality, version 12.2.1.4.0Fusion Middleware
Oracle Enterprise Manager for Exadata, version 13.5.0.0Oracle Enterprise Manager
Oracle Enterprise Manager for Fusion Middleware, version 13.5.0.0Oracle Enterprise Manager
Oracle Enterprise Manager for Oracle Database, version 13.5.0.0Oracle Enterprise Manager
Oracle Enterprise Manager Ops Center, version 12.4.0.0Oracle Enterprise Manager
Oracle Enterprise Operations Monitor, versions 5.0, 5.1Oracle Enterprise Operations Monitor
Oracle Essbase, version 21.4.3.0.0Database
Oracle Financial Services Analytical Applications Infrastructure, versions 8.0.7, 8.0.8, 8.1.0, 8.1.1, 8.1.2Oracle Financial Services Analytical Applications Infrastructure
Oracle Financial Services Behavior Detection Platform, versions 8.0.8.1, 8.1.1.1, 8.1.2.4, 8.1.2.5Oracle Financial Services Behavior Detection Platform
Oracle Financial Services Compliance Studio, version 8.1.2.4Oracle Financial Services Compliance Studio
Oracle Financial Services Enterprise Case Management, versions 8.0.8.2, 8.1.1.1, 8.1.2.4, 8.1.2.5Oracle Financial Services Enterprise Case Management
Oracle Financial Services Trade-Based Anti Money Laundering Enterprise Edition, version 8.0.8Oracle Financial Services Trade-Based Anti Money Laundering Enterprise Edition
Oracle FLEXCUBE Investor Servicing, version 14.7.0.0.0Contact Support
Oracle FLEXCUBE Universal Banking, versions 14.0-14.7Contact Support
Oracle Fusion Middleware MapViewer, version 12.2.1.4.0Fusion Middleware
Oracle GoldenGate, versions 19.1.0.0.0-19.1.0.0.230422, 21.3.0.0.0-21.10.0.0.5Database
Oracle GoldenGate Stream Analytics, versions 19.1.0.0.0-19.1.0.0.7Database
Oracle GraalVM Enterprise Edition, versions 20.3.10, 21.3.6, 22.3.2Java SE
Oracle GraalVM for JDK, versions 17.0.7, 20.0.1Java SE
Oracle Graph Server and Client, versions 21.4.6, 21.4.7, 22.4.1, 22.4.2, 23.1.0Database
Oracle Health Sciences Sciences Data Management Workbench, versions 3.1.0.2, 3.1.1.3, 3.2.0.0Health Sciences
Oracle Hospitality Cruise Shipboard Property Management System, versions 20.1.0, 20.2.0, 20.3.3Oracle Hospitality Cruise Shipboard Property Management System
Oracle Hospitality Simphony, version 19.5Oracle Hospitality Simphony
Oracle HTTP Server, version 12.2.1.4.0Fusion Middleware
Oracle Hyperion Data Relationship Management, version 11.2.13.0.0Oracle Enterprise Performance Management
Oracle Hyperion Essbase Administration Services, version 21.4.3.0.0Database
Oracle Hyperion Financial Reporting, version 11.2.13.0.0Oracle Enterprise Performance Management
Oracle Hyperion Workspace, version 11.2.13.0.0Oracle Enterprise Performance Management
Oracle Identity Manager, version 12.2.1.4.0Fusion Middleware
Oracle Identity Manager Connector, versions 9.1.0, 12.2.1.3.0Fusion Middleware
Oracle Java SE, versions 8u371, 8u371-perf, 11.0.19, 17.0.7, 20.0.1Java SE
Oracle JDeveloper, version 12.2.1.4.0Fusion Middleware
Oracle Middleware Common Libraries and Tools, version 12.2.1.4.0Fusion Middleware
Oracle Mobile Security Suite, versions prior to 11.1.2.3.1Fusion Middleware
Oracle NoSQL Database, versions 19.5.33, 20.3.28, 21.2.55, 22.3.26NoSQL Database
Oracle Policy Automation, versions prior to 12.2.31Oracle Policy Automation
Oracle Retail Advanced Inventory Planning, versions 15.0, 16.0Retail Applications
Oracle Retail Bulk Data Integration, versions 16.0.3, 19.0.1Retail Applications
Oracle Retail Financial Integration, versions 14.2.0, 15.0.4, 16.0.3, 19.0.1Retail Applications
Oracle Retail Integration Bus, versions 14.2.0, 15.0.4, 16.0.3, 19.0.1Retail Applications
Oracle Retail Order Broker, version 19.1Retail Applications
Oracle Retail Predictive Application Server, versions 15.0.3, 16.0.3Retail Applications
Oracle Retail Service Backbone, versions 14.2.0, 15.0.4, 16.0.3, 19.0.1Retail Applications
Oracle SD-WAN Edge, version 9.1.1.5.0Oracle SD-WAN Edge
Oracle Secure Backup, version 18.1.0.1.0Oracle Secure Backup
Oracle Service Bus, version 12.2.1.4.0Fusion Middleware
Oracle SOA Suite, version 12.2.1.4.0Fusion Middleware
Oracle Solaris, version 11Systems
Oracle Spatial Studio, version 22.3.0Database
Oracle TimesTen In-Memory Database, versions 22.1.1.1.0-22.1.1.11.0Database
Oracle Utilities Application Framework, versions 4.2.0.3.0, 4.3.0.1.0-4.3.0.6.0, 4.4.0.0.0, 4.4.0.2.0, 4.4.0.3.0, 4.5.0.0.0, 4.5.0.1.0, 4.5.0.1.1Oracle Utilities Applications
Oracle Utilities Network Management System, versions 2.4.0.1.21, 2.5.0.0.9, 2.5.0.1, 2.5.0.1.11, 2.5.0.2, 2.5.0.2.3, 2.6.0.0Oracle Utilities Applications
Oracle Utilities Testing Accelerator, versions 6.0.0.1-7.0.0.0Oracle Utilities Applications
Oracle VM VirtualBox, versions prior to 6.1.46, prior to 7.0.10Virtualization
Oracle WebCenter Content, version 12.2.1.4.0Fusion Middleware
Oracle WebCenter Sites, version 12.2.1.4.0Fusion Middleware
Oracle WebLogic Server, versions 12.2.1.4.0, 14.1.1.0.0Fusion Middleware
PeopleSoft Enterprise PeopleTools, versions 8.59, 8.60PeopleSoft
Primavera Gateway, versions 18.8.0-18.8.15, 19.12.0-19.12.16, 20.12.0-20.12.11, 21.12.0-21.12.9Oracle Construction and Engineering Suite
Primavera P6 Enterprise Project Portfolio Management, versions 22.12.2, 22.12.3Oracle Construction and Engineering Suite
Primavera Unifier, versions 18.8.0-18.8.18, 19.12.0-19.12.16, 20.12.0-20.12.16, 21.12.0-21.12.15, 22.12.0-22.12.6Oracle Construction and Engineering Suite
Siebel Applications, versions 22.12 and prior, 23.6 and priorSiebel
### □ 해결 방안 o “Oracle Critical Patch Update Advisory - July 2023”에서 제시한 패치 관련 사항을 검토하고 벤더 및 유지보수 업체와 협의/검토 후 패치 적용 \[1] o JAVA SE 사용자는 설치된 제품의 최신 버전 다운로드\[2] 및 설치하거나, Java 업데이트 자동 알림 설정 권고 \[3] ### □ 기타 문의사항 o 한국인터넷진흥원 사이버민원센터: 국번 없이 118 ### \[참고사이트] \[1] \[2] \[3] ### □ 작성 : \[KISA] 침해사고분석단 취약점분석팀 ## 출처 : [KISA 바로가기](https://www.krcert.or.kr/kr/bbs/view.do?searchCnd=\&bbsId=B0000133\&searchWrd=\&menuNo=205020\&pageIndex=1\&categoryCode=\&nttId=71166) {% embed url="" %} NHN Cloud 정보 사이트 {% endembed %} {% embed url="" %} 취약점 진단 분석 평가 방법 사이트 {% endembed %} --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://sul.skill.or.kr/security-update-infomations/2023-security-update-infomations/oracle-2023-08-1.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.