Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2022-2024 and is owned by Tenable, Inc. or an Affiliate thereof.ORACLE_WEBLOGIC_SERVER_CPU_JUL_2022.NASL
HistoryJul 20, 2022 - 12:00 a.m.

Oracle WebLogic Server (Jul 2022 CPU)

2022-07-2000:00:00
This script is Copyright (C) 2022-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
417

8.3 High

AI Score

Confidence

High

JSON

The version of Oracle WebLogic Server installed on the remote host is missing a security patch from the July 2022 Critical Patch Update (CPU). It is, therefore, affected by multiple vulnerabilities, including:

  • Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Third Party Tools, Samples (Spring Framework)). Supported versions that are affected are 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle WebLogic Server. Successful attacks of this vulnerability can result in takeover of Oracle WebLogic Server. (CVE-2022-22965)

  • Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Centralized Third Party Jars (OWASP Enterprise Security API)). Supported versions that are affected are 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle WebLogic Server. Successful attacks of this vulnerability can result in takeover of Oracle WebLogic Server. (CVE-2022-23457)

  • Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Centralized Third Party Jars (Apache Maven)). Supported versions that are affected are 12.2.1.3.0 and 12.2.1.4.0.
    Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle WebLogic Server. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Oracle WebLogic Server accessible data as well as unauthorized access to critical data or complete access to all Oracle WebLogic Server accessible data. (CVE-2021-26291)

Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.

##
# (C) Tenable, Inc.
##

include('compat.inc');

if (description)
{
  script_id(163298);
  script_version("1.11");
  script_set_attribute(attribute:"plugin_modification_date", value:"2024/01/04");

  script_cve_id(
    "CVE-2019-17566",
    "CVE-2020-2351",
    "CVE-2020-11987",
    "CVE-2020-28491",
    "CVE-2020-36518",
    "CVE-2021-23450",
    "CVE-2021-26291",
    "CVE-2021-40690",
    "CVE-2022-21548",
    "CVE-2022-21557",
    "CVE-2022-21560",
    "CVE-2022-21564",
    "CVE-2022-22965",
    "CVE-2022-23457",
    "CVE-2022-24839",
    "CVE-2022-29577"
  );
  script_xref(name:"CISA-KNOWN-EXPLOITED", value:"2022/04/25");
  script_xref(name:"IAVA", value:"2022-A-0285");
  script_xref(name:"CEA-ID", value:"CEA-2021-0004");
  script_xref(name:"CEA-ID", value:"CEA-2021-0025");
  script_xref(name:"IAVA", value:"2023-A-0558");
  script_xref(name:"IAVA", value:"2023-A-0559");

  script_name(english:"Oracle WebLogic Server (Jul 2022 CPU)");

  script_set_attribute(attribute:"synopsis", value:
"An application server installed on the remote host is affected by multiple vulnerabilities");
  script_set_attribute(attribute:"description", value:
"The version of Oracle WebLogic Server installed on the remote host is missing a security patch from the July 2022
Critical Patch Update (CPU). It is, therefore, affected by multiple vulnerabilities, including:

  - Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Third Party
    Tools, Samples (Spring Framework)). Supported versions that are affected are 12.2.1.3.0, 12.2.1.4.0 and
    14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP
    to compromise Oracle WebLogic Server. Successful attacks of this vulnerability can result in takeover of
    Oracle WebLogic Server. (CVE-2022-22965)

  - Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Centralized
    Third Party Jars (OWASP Enterprise Security API)). Supported versions that are affected are 12.2.1.3.0,
    12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network
    access via HTTP to compromise Oracle WebLogic Server. Successful attacks of this vulnerability can result
    in takeover of Oracle WebLogic Server. (CVE-2022-23457)

  - Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Centralized
    Third Party Jars (Apache Maven)). Supported versions that are affected are 12.2.1.3.0 and 12.2.1.4.0.
    Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to
    compromise Oracle WebLogic Server. Successful attacks of this vulnerability can result in unauthorized
    creation, deletion or modification access to critical data or all Oracle WebLogic Server accessible data
    as well as unauthorized access to critical data or complete access to all Oracle WebLogic Server
    accessible data. (CVE-2021-26291)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
  script_set_attribute(attribute:"see_also", value:"https://www.oracle.com/docs/tech/security-alerts/cpujul2022cvrf.xml");
  script_set_attribute(attribute:"see_also", value:"https://www.oracle.com/security-alerts/cpujul2022.html");
  script_set_attribute(attribute:"solution", value:
"Apply the appropriate patch according to the July 2022 Oracle Critical Patch Update advisory.");
  script_set_attribute(attribute:"agent", value:"all");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:H/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:H/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2022-23457");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_set_attribute(attribute:"exploit_framework_core", value:"true");
  script_set_attribute(attribute:"exploited_by_malware", value:"true");
  script_set_attribute(attribute:"metasploit_name", value:'Spring Framework Class property RCE (Spring4Shell)');
  script_set_attribute(attribute:"exploit_framework_metasploit", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2022/07/19");
  script_set_attribute(attribute:"patch_publication_date", value:"2022/07/19");
  script_set_attribute(attribute:"plugin_publication_date", value:"2022/07/20");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:oracle:fusion_middleware");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:oracle:weblogic_server");
  script_set_attribute(attribute:"stig_severity", value:"I");
  script_set_attribute(attribute:"thorough_tests", value:"true");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Misc.");

  script_copyright(english:"This script is Copyright (C) 2022-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("oracle_weblogic_server_installed.nbin", "os_fingerprint.nasl");
  script_require_ports("installed_sw/Oracle WebLogic Server", "installed_sw/Oracle Data Integrator Embedded Weblogic Server");

  exit(0);
}

include('vcf.inc');
include('vcf_extras_oracle.inc');

var app_info = vcf::oracle_weblogic::get_app_info();

var constraints = [
  { 'min_version' : '12.2.1.3.0', 'fixed_version' : '12.2.1.3.220620', 'fixed_display' : '34298772 or 34373534' },
  { 'min_version' : '12.2.1.4.0', 'fixed_version' : '12.2.1.4.220602', 'fixed_display' : '34236279 or 34373563' },
  { 'min_version' : '14.1.1.0.0', 'fixed_version' : '14.1.1.0.220727', 'fixed_display' : '34429365 or 34445145' }
];

vcf::oracle_weblogic::check_version_and_report(app_info:app_info, constraints:constraints, severity:SECURITY_HOLE);
VendorProductVersionCPE
oraclefusion_middlewarecpe:/a:oracle:fusion_middleware
oracleweblogic_servercpe:/a:oracle:weblogic_server

References

Related

openvas 12
mageia 3
nessus 15
suse 2
prion 11
cve 10
github 7
veracode 10
cnvd 1
ibm 58
f5 1
redhat 3
fedora 2
osv 19
redhatcve 5
ubuntucve 7
debiancve 7
debian 2
cbl_mariner 1
atlassian 6
alpinelinux 1
ubuntu 3
rapid7blog 1
talosblog 1
msrc 1
trendmicroblog 1
thn 1
githubexploit 5
nuclei 1
checkpoint_advisories 1
cgr 1
openvas
openvas
Mageia: Security Advisory (MGASA-2021-0168)
2022-01-28 00:00:00
SUSE: Security Advisory (SUSE-SU-2022:1678-1)
2022-05-17 00:00:00
openSUSE: Security Advisory for jackson-databind, (SUSE-SU-2022:1678-1)
2022-05-17 00:00:00
mageia
mageia
Updated batik packages fix security vulnerabilities
2021-04-02 23:25:05
Updated batik packages fix a security vulnerability
2021-03-17 09:16:07
Updated maven packages fix security vulnerability
2023-07-19 22:53:31
nessus
nessus
SUSE SLED15 / SLES15 Security Update : jackson-databind, jackson-dataformats-binary, jackson-annotations, jackson-bom, jackson-core (SUSE-SU-2022:1678-1)
2022-05-17 00:00:00
Oracle Primavera Gateway (Jul 2022 CPU)
2022-07-21 00:00:00
Oracle WebCenter Portal Multiple Vulnerabilities (Oct 2022 CPU)
2022-10-20 00:00:00
suse
suse
Security update for jackson-databind, jackson-dataformats-binary, jackson-annotations, jackson-bom, jackson-core (important)
2022-05-16 00:00:00
Security update for xmlgraphics-batik (moderate)
2020-06-23 00:00:00
prion
prion
Design/Logic Flaw
2022-07-19 22:15:00
Design/Logic Flaw
2022-04-25 20:15:00
Design/Logic Flaw
2021-02-18 16:15:00
cve
cve
CVE-2022-21564
2022-07-19 22:15:00
CVE-2020-28491
2021-02-18 16:15:00
CVE-2022-23457
2022-04-25 20:15:00
github
github
Denial of Service (DoS) in Jackson Dataformat CBOR
2021-12-09 19:17:21
Denial of Service (DoS) in Nokogiri on JRuby
2022-04-11 21:38:11
Path traversal in the OWASP Enterprise Security API
2022-04-27 21:09:43
veracode
veracode
Cross-site Scripting (XSS)
2022-04-22 07:49:31
Denial Of Service (DoS)
2021-02-19 01:15:41
Denial Of Service (DoS)
2022-04-13 02:50:56
cnvd
cnvd
Oracle WebLogic Server Core Component Input Validation Error Vulnerability
2022-07-21 00:00:00
ibm
ibm
Security Bulletin: IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in FasterXML jackson-dataformat
2021-05-14 01:37:34
Security Bulletin: Information disclosure in FasterXML Jackson Dataformats affect IBM Operations Analytics - Log Analysis (CVE-2020-28491)
2022-11-22 13:01:21
Security Bulletin: IBM Security Verify Governance is vulnerable to denial of service (CVE-2022-24839)
2023-04-20 10:45:00
f5
f5
K000135854 : ESAPI (The OWASP Enterprise Security API) vulnerability CVE-2022-23457
2023-08-15 00:00:00
redhat
redhat
(RHSA-2021:3125) Moderate: Red Hat build of Eclipse Vert.x 4.1.2 security update
2021-08-18 16:52:59
(RHSA-2022:1627) Low: Red Hat AMQ Broker 7.9.4 release and security update
2022-04-27 09:45:16
(RHSA-2022:1626) Low: Red Hat AMQ Broker 7.8.6 release and security update
2022-04-27 09:45:11
fedora
fedora
[SECURITY] Fedora 34 Update: batik-1.14-1.fc34
2021-03-19 20:30:31
[SECURITY] Fedora 33 Update: batik-1.14-2.fc33
2021-04-16 14:36:49
osv
osv
Denial of Service (DoS) in Jackson Dataformat CBOR
2021-12-09 19:17:21
CVE-2022-23457
2022-04-25 20:15:41
libxml-security-java - security update
2021-11-15 00:00:00
redhatcve
redhatcve
CVE-2020-28491
2021-06-18 10:50:29
CVE-2020-11987
2021-03-01 19:03:16
CVE-2021-26291
2021-04-30 19:06:38
ubuntucve
ubuntucve
CVE-2022-23457
2022-04-25 00:00:00
CVE-2020-11987
2021-02-24 00:00:00
CVE-2021-26291
2021-04-23 00:00:00
debiancve
debiancve
CVE-2022-23457
2022-04-25 20:15:00
CVE-2021-40690
2021-09-19 18:15:00
CVE-2020-11987
2021-02-24 18:15:00
debian
debian
[SECURITY] [DSA 5010-1] libxml-security-java security update
2021-11-15 17:27:50
[SECURITY] [DLA 2767-1] libxml-security-java security update
2021-09-27 12:36:42
cbl_mariner
cbl_mariner
CVE-2021-26291 affecting package maven 3.5.4-13
2021-05-10 04:20:34
atlassian
atlassian
Vulnerable version of xmlsec used - CVE-2021-40690
2022-03-15 19:56:03
Info Disclosure org.apache.santuario:xmlsec Dependency in Crowd Data Center and Server
2023-12-14 07:45:31
DoS (Denial of Service) net.sourceforge.nekohtml:nekohtml Vulnerability in Jira Service Management Data Center and Server
2023-11-22 02:44:58
alpinelinux
alpinelinux
CVE-2021-26291
2021-04-23 15:15:00
ubuntu
ubuntu
Apache Maven vulnerability
2022-08-18 00:00:00
Apache Maven vulnerability
2023-01-16 00:00:00
Apache XML Security for Java vulnerability
2022-07-20 00:00:00
rapid7blog
rapid7blog
It’s the Summer of AppSec: Q2 Improvements to Our Industry-Leading DAST and WAAP
2022-07-13 15:45:00
talosblog
talosblog
Threat Advisory: Spring4Shell
2022-04-04 10:26:10
msrc
msrc
Microsoft’s Response to CVE-2022-22965 Spring Framework
2022-04-05 07:00:00
trendmicroblog
trendmicroblog
CVE-2022-22965: Analyzing the Exploitation of Spring4Shell Vulnerability in Weaponizing and Executing the Mirai Botnet Malware
2022-04-08 00:00:00
thn
thn
Security Patch Releases for Critical Zero-Day Bug in Java Spring Framework
2022-03-31 15:35:00
githubexploit
githubexploit
Exploit for Code Injection in Vmware Spring Framework
2022-04-01 12:18:29
Exploit for Code Injection in Vmware Spring Framework
2022-04-29 09:58:05
Exploit for Code Injection in Vmware Spring Framework
2022-05-19 23:16:40
nuclei
nuclei
Spring - Remote Code Execution
2022-04-01 11:43:45
checkpoint_advisories
checkpoint_advisories
Dojo Prototype Pollution (CVE-2021-23450)
2022-05-15 00:00:00
cgr
cgr
CVE-2021-40690 vulnerabilities
2024-04-25 21:08:41

8.3 High

AI Score

Confidence

High

JSON
Related for ORACLE_WEBLOGIC_SERVER_CPU_JUL_2022.NASL
openvas12mageia3nessus15suse2prion11cve10github7veracode10cnvd1ibm58f51redhat3fedora2osv19redhatcve5ubuntucve7debiancve7debian2cbl_mariner1atlassian6alpinelinux1ubuntu3rapid7blog1talosblog1msrc1trendmicroblog1thn1githubexploit5nuclei1checkpoint_advisories1cgr1