Lucene search
Tenable700244.PRMHistoryMay 03, 2018 - 12:00 a.m.
Oracle WebLogic Multiple Java Object Deserialization RCE
2018-05-0300:00:00
Tenable
www.tenable.com
103
The remote host is running a version of Oracle WebLogic Server that is affected by multiple RCE vulnerabilities:
- A vulnerability exists that allows an unauthenticated attacker with network access via T3 to compromise Oracle WebLogic Server. Successful attacks of this vulnerability can result in takeover of Oracle WebLogic Server. (CVE-2018-2628)
- A deserialization vulnerability via XMLDecoder exists in Oracle WebLogic Server Web Services. This remote code execution vulnerability is remotely exploitable without authentication, i.e., may be exploited over a network without the need for a username and password. (CVE-2019-2729)
Binary data 700244.prm| Vendor | Product | Version | CPE |
|---|---|---|---|
| oracle | weblogic_server | cpe:/a:oracle:weblogic_server |
Related
zdt
zdt
Oracle Weblogic 10.3.6.0.0 - Remote Command Execution Exploit
2020-01-09 00:00:00
Oracle Weblogic Server Deserialization Remote Code Execution Exploit
2018-08-11 00:00:00
prion
prion
Design/Logic Flaw
2019-06-19 23:15:00
Design/Logic Flaw
2018-04-19 02:29:00
nessus
nessus
Oracle WebLogic Server Deserialization RCE (CVE-2019-2729)
2019-06-27 00:00:00
Oracle WebLogic Server Web Services Remote Code Execution Vulnerability
2019-06-19 00:00:00
Oracle WebLogic Server Deserialization RCE (CVE-2018-2628)
2018-04-30 00:00:00
githubexploit
githubexploit
Exploit for Improper Access Control in Oracle Weblogic Server
2020-02-19 03:49:51
Exploit for Improper Access Control in Oracle Weblogic Server
2020-01-09 22:27:36
Exploit for Injection in Oracle Weblogic Server
2019-06-24 08:33:07
checkpoint_advisories
checkpoint_advisories
Oracle Weblogic Insecure Deserialization (CVE-2019-2729)
2019-06-25 00:00:00
packetstorm
packetstorm
Oracle Weblogic 10.3.6.0.0 Remote Command Execution
2020-01-09 00:00:00
Oracle Weblogic Server Deserialization Remote Code Execution
2018-08-10 00:00:00
Oracle Weblogic Server Deserialization Remote Command Execution
2019-03-07 00:00:00
exploitpack
exploitpack
attackerkb
attackerkb
CVE-2019-2729
2019-06-19 00:00:00
CVE-2018-2628
2018-04-19 00:00:00
trendmicroblog
trendmicroblog
This Week in Security News: Cyberespionage Campaigns and Botnet Malware
2019-06-21 19:16:21
This Week in Security News: Malvertising and Internet of Things Malware
2019-06-28 14:24:11
cisa
cisa
Oracle Releases Security Advisory for WebLogic
2019-06-19 00:00:00
dsquare
dsquare
Oracle WebLogic Server Web Services RCE
2020-01-08 00:00:00
cve
cve
CVE-2019-2729
2019-06-19 23:15:00
CVE-2018-2628
2018-04-19 02:29:00
nuclei
nuclei
Oracle WebLogic Server Administration Console - Remote Code Execution
2021-10-21 00:07:30
seebug
seebug
WeblogicεεΊεεθΏη¨δ»£η ζ§θ‘ζΌζ΄(CVE-2018-2628)
2018-04-18 00:00:00
myhack58
myhack58
thn
thn
Faulty Patch for Oracle WebLogic Flaw Opens Updated Servers to Hackers Again
2018-04-30 13:36:00
New Critical Oracle WebLogic Flaw Under Active Attack β Patch Now
2019-06-19 18:42:00
Oracle Warns of Critical Remotely Exploitable Weblogic Server Flaws
2021-07-22 08:21:00
cisa_kev
cisa_kev
Oracle WebLogic Server Unspecified Vulnerability
2022-09-08 00:00:00
exploitdb
exploitdb
symantec
symantec
threatpost
threatpost
Oracle: Unpatched Versions of WebLogic App Server Under Active Attack
2020-05-04 14:57:51
Oracle WebLogic Server RCE Flaw Under Active Attack
2020-10-29 14:49:58
Oracle Warns of New Actively-Exploited WebLogic Flaw
2019-06-19 16:25:30
securelist
securelist
IT threat evolution Q3 2019
2019-11-29 10:00:12
fireeye
fireeye
kitploit
kitploit
Vulmap - Web Vulnerability Scanning And Verification Tools
2020-12-25 11:30:00
oracle
oracle
Oracle Critical Patch Update - April 2018
2018-04-17 00:00:00
Oracle Critical Patch Update Advisory - July 2019
2019-07-16 00:00:00
Oracle Critical Patch Update Advisory - July 2021
2021-07-20 00:00:00
Related for 700244.PRM