Lucene search
+L

300 matches found

NVD
NVD
added 2023/04/18 8:15 p.m.26 views

CVE-2023-21964

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware component: Core. Supported versions that are affected are 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via T3 to compromise Oracle WebLogi...

7.5CVSS7.1AI score0.00842EPSS
Exploits0References1
OSV
OSV
added 2023/04/18 8:15 p.m.7 views

CVE-2023-21964

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware component: Core. Supported versions that are affected are 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via T3 to compromise Oracle WebLogi...

7.5CVSS7.2AI score0.00842EPSS
Exploits0References1
OSV
OSV
added 2023/04/18 8:15 p.m.6 views

CVE-2023-21931

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware component: Core. Supported versions that are affected are 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via T3 to compromise Oracle WebLogi...

7.5CVSS7.1AI score0.82262EPSS
Exploits3References2
Positive Technologies
Positive Technologies
added 2023/04/18 12:0 a.m.7 views

PT-2023-2556 · Oracle · Oracle Weblogic Server

Name of the Vulnerable Software and Affected Versions: Oracle WebLogic Server versions 12.2.1.3.0 through 12.2.1.4.0 Oracle WebLogic Server version 14.1.1.0.0 Description: The issue allows an unauthenticated attacker with network access via T3 to compromise Oracle WebLogic Server, resulting in...

7.8CVSS8.8AI score0.00634EPSS
Exploits0References6
CNNVD
CNNVD
added 2023/04/18 12:0 a.m.7 views

Oracle WebLogic Server 安全漏洞

Oracle WebLogic Server is an application service middleware for cloud and traditional environments from Oracle Corporation USA that provides a modern lightweight development platform that supports the entire lifecycle management of applications from development to production and simplifies...

7.5CVSS7.5AI score0.00842EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/02/15 5:17 a.m.9 views

SUSE CVE-2015-4852

The WLS Security component in Oracle WebLogic Server 10.3.6.0, 12.1.2.0, 12.1.3.0, and 12.2.1.0 allows remote attackers to execute arbitrary commands via a crafted serialized Java object in T3 protocol traffic to TCP port 7001, related to...

9.8CVSS7.6AI score0.96032EPSS
Exploits17References6
CNNVD
CNNVD
added 2023/01/18 12:0 a.m.6 views

Oracle WebLogic Server 安全漏洞

Oracle WebLogic Server is an application services middleware from Oracle for cloud and traditional environments that provides a modern, lightweight development platform that supports full lifecycle management of applications from development to production and simplifies application deployment and...

7.5CVSS9.3AI score0.99811EPSS
Exploits10References4
CNVD
CNVD
added 2023/01/18 12:0 a.m.41 views

Oracle WebLogic Server Remote Code Execution Vulnerability (CNVD-2023-04389)

Oracle WebLogic Server is an application services middleware from Oracle for cloud and traditional environments that provides a modern, lightweight development platform that supports full lifecycle management of applications from development to production and simplifies application deployment and...

7.5CVSS3AI score0.99811EPSS
Exploits10References1
Positive Technologies
Positive Technologies
added 2023/01/17 12:0 a.m.8 views

PT-2023-1295

Name of the Vulnerable Software and Affected Versions Oracle WebLogic Server versions 12.2.1.3.0 through 12.2.1.4.0 Oracle WebLogic Server version 14.1.1.0.0 Description The issue is related to insufficient input validation in the Core component of Oracle WebLogic Server, allowing an...

7.8CVSS7.4AI score0.99811EPSS
Exploits10References54
Positive Technologies
Positive Technologies
added 2023/01/17 12:0 a.m.7 views

PT-2023-1309 · Oracle · Oracle Weblogic Server

Name of the Vulnerable Software and Affected Versions: Oracle WebLogic Server versions 12.2.1.3.0 through 12.2.1.4.0 Oracle WebLogic Server version 14.1.1.0.0 Description: The issue is related to insufficient input validation in the Core component of Oracle WebLogic Server, allowing an...

7.8CVSS8.8AI score0.00857EPSS
Exploits0References8
CISA KEV Catalog
CISA KEV Catalog
added 2022/09/08 12:0 a.m.24 views

Oracle WebLogic Server Unspecified Vulnerability

Oracle WebLogic Server contains an unspecified vulnerability which can allow an unauthenticated attacker with T3 network access to compromise the server...

9.8CVSS4.9AI score0.99448EPSS
In wildExploits69
BDU FSTEC
BDU FSTEC
added 2022/08/18 12:0 a.m.5 views

The vulnerability of the Core server component of Oracle WebLogic Server allows a hacker to gain access to modify, add, or delete data, or cause partial service disruption.

The vulnerability of the Core server component of Oracle WebLogic Server exists due to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to remotely gain access to modify, add, or delete data, or cause a partial service outage using the IIOP and T3...

6.5CVSS6.5AI score0.00816EPSS
Exploits0References3Affected Software1
CNVD
CNVD
added 2022/07/21 12:0 a.m.29 views

Oracle WebLogic Server Core Component Input Validation Error Vulnerability

Oracle WebLogic Server is a product of Oracle Corporation. Oracle WebLogic Server is an application services middleware for cloud and traditional environments that provides a modern, lightweight development platform that supports the entire lifecycle management of applications from development to...

6.5CVSS6.3AI score0.00816EPSS
Exploits0References1
OSV
OSV
added 2022/07/19 10:15 p.m.3 views

CVE-2022-21560

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware component: Core. Supported versions that are affected are 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via T3, IIOP to compromise Oracle...

5.3CVSS6.3AI score0.00984EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2022/06/23 12:0 a.m.8 views

The vulnerability of the Core component of the Oracle Coherence data processing software allows a hacker to cause the device to freeze or experience service failure.

The vulnerability of the Core component of the Oracle Coherence data processing software exists due to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to cause the device to become unresponsive or to fail in service through the specially crafted T3...

7.8CVSS7.5AI score0.01174EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/06/15 12:0 a.m.8 views

The vulnerability of the Core server component of Oracle WebLogic Server, a software platform of Oracle Fusion Middleware, allows a perpetrator to cause service interruptions.

The vulnerability of the Core server component of Oracle WebLogic Server, a software platform of Oracle Fusion Middleware, is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause service interruptions using the T3 network protocol...

7.8CVSS7.7AI score0.01834EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/06/09 12:0 a.m.8 views

The vulnerability of the Security sub-component of the Oracle WebLogic Server application server, a software platform of Oracle Fusion Middleware, allows an attacker to execute arbitrary code and gain full control over the application through network traffic using the T3 protocol.

The vulnerability of the Security sub-component of Oracle WebLogic Server, a software platform of Oracle Fusion Middleware, exists due to insufficient validation of input data. Exploiting this vulnerability allows an attacker operating remotely to execute arbitrary code and gain full control over...

10CVSS8.4AI score0.01845EPSS
Exploits0References3Affected Software1
CNVD
CNVD
added 2022/04/21 12:0 a.m.16 views

Oracle WebLogic Server Input Validation Error Vulnerability (CNVD-2022-36951)

Oracle WebLogic Server is an application services middleware from Oracle for cloud and traditional environments that provides a modern, lightweight development platform that supports full lifecycle management of applications from development to production and simplifies application deployment and...

7.5CVSS1.7AI score0.01303EPSS
Exploits0References1
OSV
OSV
added 2022/04/19 9:15 p.m.5 views

CVE-2022-21420

Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware component: Core. Supported versions that are affected are 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via T3 to compromise Oracle Coherence...

9.8CVSS7AI score0.01445EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/04/19 9:15 p.m.5 views

CVE-2022-21420

Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware component: Core. Supported versions that are affected are 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via T3 to compromise Oracle Coherence...

9.8CVSS6.9AI score0.01445EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder