Since April 2021, multiple CVSS 9.8+ vulnerabilities have been patched in later Oracle versions but in 11.2.0.4 Sustaining Support.
: Managed by Oracle Advanced Customer Services (ACS), MDS was designed as a "stopgap" for those moving to 19c. It typically provided Severity 1 fixes and security updates for a limited window (January 2021 through December 2023). oracle 11.2.0.4 support