Exploit for Injection in Oracle Weblogic Server

🗓️ 23 Aug 2019 01:57:42Type

Exploit for Injection in Oracle Weblogic Server using WebLogic Universal Exploit - CVE-2017-3506, CVE-2017-10271, CVE-2019-2725, CVE-2019-2729. Allows generation of valid WebLogic SOAP payloads for exploiting different CVE's. Supports dynamic ysoserial payload generation and remote command execution

Reporter	Title	Published	Views	Family All 176
Talos Blog	Ransom Where? Malicious Cryptocurrency Miners Takeover, Generating Millions	31 Jan 201807:58	–	talosblog
Talos Blog	Cryptocurrency miners aren’t dead yet: Documenting the voracious but simple “Panda”	17 Sep 201908:09	–	talosblog
Talos Blog	Threat Source (May 2, 2019)	2 May 201911:00	–	talosblog
Talos Blog	Threat Source newsletter (May 9)	9 May 201911:00	–	talosblog
Talos Blog	Sodinokibi ransomware exploits WebLogic Server vulnerability	1 May 201912:37	–	talosblog
Talos Blog	Rocke: The Champion of Monero Miners	30 Aug 201808:26	–	talosblog
Talos Blog	Cisco Talos Honeypot Analysis Reveals Rise in Attacks on Elasticsearch Clusters	26 Feb 201910:56	–	talosblog
Check Point Advisories	Oracle WebLogic WLS Security Component Remote Code Execution (CVE-2017-10271; CVE-2017-3506)	27 Dec 201700:00	–	checkpoint_advisories
Check Point Advisories	Oracle Weblogic Insecure Deserialization (CVE-2019-2729)	25 Jun 201900:00	–	checkpoint_advisories
Check Point Advisories	Oracle WebLogic Server Remote Code Execution (CVE-2019-2725)	28 Apr 201900:00	–	checkpoint_advisories

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

23 Aug 2019 01:42Current

9.5High risk

Vulners AI Score9.5

EPSS0.974