Researchers Say Oracle Took 6 Months to Patch Critical Vulnerability Affecting Many Systems
Tracked as CVE-2022–21445 (CVSS score of 9.8), the vulnerability is described as a deserialization of untrusted data, which could be exploited to achieve arbitrary code execution.