Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2019-2024 and is owned by Tenable, Inc. or an Affiliate thereof.ORACLE_WEBLOGIC_SERVER_CVE_2018_3191.NBIN
HistoryFeb 25, 2019 - 12:00 a.m.

Oracle WebLogic Server 10.3.6.0 / 12.1.3.0 / 12.2.1.3 Java Object Deserialization RCE (CVE-2018-3191)

2019-02-2500:00:00
This script is Copyright (C) 2019-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
43
JSON

The version of Oracle WebLogic Server installed on the remote host is affected by a remote code execution vulnerability in the WLS Core Components subcomponent due to unsafe deserialization of Java objects by the RMI registry. An unauthenticated remote attacker can exploit this, via a crafted serialized Java object, to execute arbitrary code.

Binary data oracle_weblogic_server_cve_2018_3191.nbin
VendorProductVersionCPE
oracleweblogic_servercpe:/a:oracle:weblogic_server
oraclefusion_middlewarecpe:/a:oracle:fusion_middleware

Related

cve 1
cvelist 1
checkpoint_advisories 1
prion 1
nessus 1
oracle 1
cve
cve
CVE-2018-3191
2018-10-17 01:31:21
cvelist
cvelist
CVE-2018-3191
2018-10-17 01:00:00
checkpoint_advisories
checkpoint_advisories
Oracle WebLogic Server AbstractPlatformTransactionManager Insecure Deserialization (CVE-2018-3191)
2019-11-19 00:00:00
prion
prion
Design/Logic Flaw
2018-10-17 01:31:00
nessus
nessus
Oracle WebLogic Server Multiple Vulnerabilities (October 2018 CPU)
2018-10-18 00:00:00
oracle
oracle
Oracle Critical Patch Update - October 2018
2018-12-18 00:00:00
JSON
Related for ORACLE_WEBLOGIC_SERVER_CVE_2018_3191.NBIN
cve1cvelist1checkpoint_advisories1prion1nessus1oracle1