SolarWinds reminds IT professionals on the importance of keeping all patches for third party applications up to date in light of the recent Java Runtime Environment (JRE) 7 vulnerabilities.
"In the past, patch concerns were primarily about fixing bugs in the product, but organizations not applying security patches to Windows, Flash, Java, and many other third party apps are now prime targets for infestations," said Lawrence Garvin, SolarWinds Head Geek and patch management expert. "What's more, all vulnerabilities have a history. And in the case of Java, it's important to remember that only 18 of the issues identified since Java 7's release are unique to Java 7.
"Of the 84 vulnerabilities identified since Java 7's release, 66 of them also existed in Java 6, while 40 still exist in Java 5 and will never be fixed. The history of these vulnerabilities is an example that underscores the importance of diligent and continuous patch management in every business environment."
Garvin said the press coverage around Java 7's security issues may be influencing some organizations to fail to upgrade their Java 6 installations to Java 7, thinking that Java 7 is flawed, when in fact the entire core of the Java platform has vulnerabilities.
Oracle has announced that no new updates will be forthcoming for Java 6 after February 2013, so that any additional vulnerability discovered in Java 7 - and also existing in Java 6 - will never be patched after that time.
In an effort to help enable IT professionals to manage any exposure they may have to the JRE 7 vulnerability, SolarWinds recently updated SolarWinds Patch Manager, its patch management solution. Now, all IT professionals can fully deploy the latest Java Runtime Environment (JRE) 7 patch to their environments using the 30-day free trial version of this product.
The Latest
In APMdigest's 2026 Observability Predictions Series, industry experts offer predictions on how Observability and related technologies will evolve and impact business in 2025. Part 6 covers OpenTelemetry ...
In APMdigest's 2026 Observability Predictions Series, industry experts offer predictions on how Observability and related technologies will evolve and impact business in 2025. Part 5 covers APM and infrastructure monitoring ...
AI continues to be the top story across the industry, but a big test is coming up as retailers make the final preparations before the holiday season starts. Will new AI powered features help load up Santa's sleigh this year? Or are early adopters in for unpleasant surprises in the form of unexpected high costs, poor performance, or even service outages? ...
In APMdigest's 2026 Observability Predictions Series, industry experts offer predictions on how Observability and related technologies will evolve and impact business in 2025. Part 4 covers user experience, digital performance, website performance and ITSM ...
In APMdigest's 2026 Observability Predictions Series, industry experts offer predictions on how Observability and related technologies will evolve and impact business in 2025. Part 3 covers more predictions about Observability ...
In APMdigest's 2026 Observability Predictions Series, industry experts offer predictions on how Observability and related technologies will evolve and impact business in 2025. Part 2 covers predictions about Observability and AIOps ...
The Holiday Season means it is time for APMdigest's annual list of predictions, covering Observability and other IT performance topics. Industry experts — from analysts and consultants to the top vendors — offer thoughtful, insightful, and often controversial predictions on how Observability, AIOps, APM and related technologies will evolve and impact business in 2026 ...
IT organizations are preparing for 2026 with increased expectations around modernization, cloud maturity, and data readiness. At the same time, many teams continue to operate with limited staffing and are trying to maintain complex environments with small internal groups. These conditions are creating a distinct set of priorities for the year ahead. The DataStrike 2026 Data Infrastructure Survey Report, based on responses from nearly 280 IT leaders across industries, points to five trends that are shaping data infrastructure planning for 2026 ...
Developers building AI applications are not just looking for fault patterns after deployment; they must detect issues quickly during development and have the ability to prevent issues after going live. Unfortunately, traditional observability tools can no longer meet the needs of AI-driven enterprise application development. AI-powered detection and auto-remediation tools designed to keep pace with rapid development are now emerging to proactively manage performance and prevent downtime ...
Every few years, the cybersecurity industry adopts a new buzzword. "Zero Trust" has endured longer than most — and for good reason. Its promise is simple: trust nothing by default, verify everything continuously. Yet many organizations still hesitate to implement Zero Trust Network Access (ZTNA). The problem isn't that ZTNA doesn't work. It's that it's often misunderstood ...