Vulnerability Detection and Patching for Oracle Databases
In the current cybersecurity landscape, companies are experiencing an increase in breaches due to exploiting vulnerabilities. Annual data breach reports reveal that many systems with known Critical Vulnerabilities and Exposures (CVE) remain unpatched, despite the availability of security patches. This is a significant factor in breaches, with more than 26% attributed to delays in applying security patches.
To mitigate these security vulnerabilities, Oracle has built an OCI Vulnerability Detection and Patching service for Oracle databases. This service helps improve your security posture by offering insights into CVEs, providing specific patch recommendations, automated patch remediation and reports.
Note
Database Vulnerability Detection and Patching is a paid feature and you will be charged based on Host CPU Core per hour of the database host regardless of the number of databases (CDB/PDB).
Database Vulnerability Detection and Patching is a paid feature and you will be charged based on Host CPU Core per hour of the database host regardless of the number of databases (CDB/PDB).
The following image describes the general flow for Vulnerability Detection and Patching. On boarding operations need to be performed once per database added, while day to day operations are to be performed to databases already on boarded.
This chapter covers the following sections: