Oracle’s April Critical Patch Update includes two new entries specifically for Oracle EPM. In this case the two products are Hyperion Financial Management (HFM) and Oracle Financial Reporting (FR) 188.8.131.52.
According to Oracle none of the issues (there are three different ones detailed below) are remotely exploitable, and aren’t rated as high as some previous security issues. Still, with all things security it is best to get them resolved as soon as possible.
Application of the patches for HFM is two-fold, requiring a patch to HFM as well as a general patch to ADF:
Application of the FR patch requires only one patch, depending on your version of FR (184.108.40.206 or the .900 build):
Should you need assistance applying these updates, please let the Managed Services team at iArch Solutions know, and we will be happy to assist.