Oracle just released a massive security update that covers 104 vulnerabilities across its product portfolio. Thirty-seven of the vulnerabilities affect Oracle Java SE. According to Oracle's advisory, 35 of these can be exploited remotely without authentication. Four of the bugs have a CVSS Base Score of 10, the most critical rating a bug can achieve.