VEX justifications added to the Critical Patch Update advisories
Blog: Oracle BPM
Oracle will now provide Vulnerability Exploitability Exchange (VEX) justifications in the Critical Patch Update advisories to further help organizations prioritize their security patching effort.