Lucene search

K
attackerkbAttackerKBAKB:71A48C9F-C37B-4C1A-AD30-456EF1B66CF9
HistoryNov 18, 2015 - 12:00 a.m.

CVE-2015-4852

2015-11-1800:00:00
attackerkb.com
332

0.967 High

EPSS

Percentile

99.7%

The WLS Security component in Oracle WebLogic Server 10.3.6.0, 12.1.2.0, 12.1.3.0, and 12.2.1.0 allows remote attackers to execute arbitrary commands via a crafted serialized Java object in T3 protocol traffic to TCP port 7001, related to oracle_common/modules/com.bea.core.apache.commons.collections.jar. NOTE: the scope of this CVE is limited to the WebLogic Server product.

Recent assessments:

gwillcox-r7 at October 20, 2020 6:52pm UTC reported:

This is now supposedly being exploited in the wild by Chinese state actors according to this NSA announcement: <https://media.defense.gov/2020/Oct/20/2002519884/-1/-1/0/CSA_CHINESE_EXPLOIT_VULNERABILITIES_UOO179811.PDF&gt;

Assessed Attacker Value: 0
Assessed Attacker Value: 0Assessed Attacker Value: 0

References