Oracle WebLogic CVE-2024-21182 Added to KEV Catalog After Active Exploitation

The U.S. Cybersecurity and Infrastructure Security Agency CISA on Monday added a high-severity security flaw impacting Oracle WebLogic Server to its Known Exploited Vulnerabilities KEV Catalog, based on evidence of active exploitation. The vulnerability, CVE-2024-21182 CVSS score: 7.5, allows an...

Exploit for CVE-2024-21182

CVE-2024-21182 — Oracle WebLogic Server T3/IIOP JNDI Injection...

CVE-2024-21182

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware component: Core. Supported versions that are affected are 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via T3, IIOP to compromise Oracle WebLogic...

Oracle WebLogic Server (July 2024 CPU)

The 12.2.1.4.0 and 14.1.1.0.0 versions of WebLogic Server installed on the remote host are affected by multiple vulnerabilities as referenced in the July 2024 CPU advisory: - Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware component: Core. Supported versions that a...

CVE-2024-21182

creationtimestamp| type| source ---|---|--- 2024-07-17 02:20:15+00:00| seen| https://t.me/cvedetector/1042 2024-12-29 15:51:23+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/9640 2024-12-31 02:57:13+00:00| published-proof-of-concept| https://t.me/dilagrafie/4053 2024-12-31...

CVE-2024-21182

...

CVE-2024-21182

...