Oracle on Tuesday is planning to release patches to fix 17 vulnerabilities in its Java SE (Standard Edition) platform.
In a pre-release announcement, the company said all of the flaws are remotely exploitable without the need for authentication credentials, such as username and password.
Oracle said it "strongly recommends" users to install the fixes due the possibility of attack.
Meanwhile this week, Cisco sealed off a number of vulnerabilities in its Unified IP Phones 7900 Series, Network Registrar, AnyConnect Secure Mobility Client and Media Experience Engine.
According to US-CERT, the flaws could be exploited to execute malicious code, elevate privileges or obtain administrator access.