Lucene search
K

4089 matches found

Positive Technologies
Positive Technologies
added 2026/06/16 12:0 a.m.14 views

PT-2026-49841

Name of the Vulnerable Software and Affected Versions Oracle Fusion Middleware WebLogic Server version 14.1.2.0.0 Oracle Fusion Middleware WebLogic Server version 15.1.1.0.0 Description A flaw in the Core component of WebLogic Server allows a low privileged attacker with network access via HTTP t...

9.9CVSS5.8AI score0.00323EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/06/16 12:0 a.m.11 views

PT-2026-49847

Name of the Vulnerable Software and Affected Versions PeopleSoft Enterprise PT PeopleTools versions 8.61 PeopleSoft Enterprise PT PeopleTools versions 8.62 Description An issue in the Weblogic component allows an unauthenticated attacker with network access via HTTP to compromise the system...

8.7CVSS5.9AI score0.0034EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/06/16 12:0 a.m.14 views

PT-2026-49870

Name of the Vulnerable Software and Affected Versions Oracle Fusion Middleware WebLogic Server versions 12.2.1.4.0 Oracle Fusion Middleware WebLogic Server versions 14.1.1.0.0 Description An issue exists in the Console component of the WebLogic Server. A low privileged attacker with network acces...

8.8CVSS5.9AI score0.00402EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/06/16 12:0 a.m.12 views

PT-2026-49869

Name of the Vulnerable Software and Affected Versions Oracle Fusion Middleware WebLogic Server versions 12.2.1.4.0 Oracle Fusion Middleware WebLogic Server versions 14.1.1.0.0 Oracle Fusion Middleware WebLogic Server versions 14.1.2.0.0 Oracle Fusion Middleware WebLogic Server versions 15.1.1.0.0...

9.1CVSS5.8AI score0.00453EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/06/16 12:0 a.m.16 views

PT-2026-49864

Name of the Vulnerable Software and Affected Versions Oracle Fusion Middleware WebLogic Server versions 14.1.2.0.0 Oracle Fusion Middleware WebLogic Server versions 15.1.1.0.0 Description An issue exists in the Console component of the WebLogic Server. An unauthenticated attacker with network...

10CVSS5.9AI score0.00483EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/06/16 12:0 a.m.15 views

PT-2026-49837

Name of the Vulnerable Software and Affected Versions Oracle Fusion Middleware WebLogic Server versions 14.1.2.0.0 Oracle Fusion Middleware WebLogic Server versions 15.1.1.0.0 Description An issue exists in the Console component of the WebLogic Server. A low privileged attacker with network acces...

8.7CVSS5.9AI score0.00326EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/06/16 12:0 a.m.16 views

PT-2026-49863

Name of the Vulnerable Software and Affected Versions Oracle Fusion Middleware WebLogic Server versions 14.1.2.0.0 Oracle Fusion Middleware WebLogic Server versions 15.1.1.0.0 Description An issue exists in the Console component of the WebLogic Server. A high privileged attacker with network acce...

6.6CVSS5.8AI score0.0035EPSS
Exploits0References3
GithubExploit
GithubExploit
added 2026/06/09 8:54 p.m.65 views

Exploit for CVE-2024-21182

CVE-2024-21182 - Oracle WebLogic Server JNDI Injection → RCE C...

7.5CVSS7.5AI score0.49689EPSS
Exploits3
RedhatCVE
RedhatCVE
added 2026/06/05 7:38 p.m.11 views

CVE-2026-34315

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware component: Web Services. Supported versions that are affected are 12.2.1.4.0, 14.1.1.0.0, 14.1.2.0.0 and 15.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to...

6.5CVSS7.4AI score0.00226EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/05 7:22 p.m.7 views

CVE-2026-34305

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware component: Web Services. Supported versions that are affected are 12.2.1.4.0, 14.1.1.0.0, 14.1.2.0.0 and 15.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to...

7.5CVSS7.4AI score0.00331EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/05 7:22 p.m.11 views

CVE-2026-34292

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware component: Core. Supported versions that are affected are 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle WebLogic Server...

7.2CVSS7.3AI score0.00347EPSS
Exploits0References1
GithubExploit
GithubExploit
added 2026/06/05 4:17 p.m.85 views

Exploit for CVE-2024-21182

CVE-2024-21182 - Oracle WebLogic Server Unauthenticated Stored...

7.5CVSS7.6AI score0.49689EPSS
Exploits3
The Hacker News
The Hacker News
added 2026/06/02 6:14 p.m.23 views

Oracle WebLogic CVE-2024-21182 Added to KEV Catalog After Active Exploitation

The U.S. Cybersecurity and Infrastructure Security Agency CISA on Monday added a high-severity security flaw impacting Oracle WebLogic Server to its Known Exploited Vulnerabilities KEV Catalog, based on evidence of active exploitation. The vulnerability, CVE-2024-21182 CVSS score: 7.5, allows an...

7.5CVSS6AI score0.49689EPSS
Exploits3
GithubExploit
GithubExploit
added 2026/06/02 2:11 p.m.263 views

Exploit for CVE-2024-21182

CVE-2024-21182 — Oracle WebLogic Server T3/IIOP JNDI Injection...

7.5CVSS6.1AI score0.49689EPSS
Exploits3
CISA
CISA
added 2026/06/01 12:0 p.m.13 views

CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added one new vulnerability to its Known Exploited Vulnerabilities KEV Catalog, based on evidence of active exploitation. CVE-2024-21182link is external Oracle WebLogic Server Unspecified Vulnerability This type of vulnerability is a frequent attack vectors for malicious cyber actors and...

7.5CVSS7.2AI score0.49689EPSS
In wildExploits3References6
VulnCheck KEV
VulnCheck KEV
added 2026/06/01 12:0 a.m.14 views

VulnCheck KEV: CVE-2024-21182

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware component: Core. Supported versions that are affected are 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via T3, IIOP to compromise Oracle WebLogic...

7.5CVSS7.2AI score0.49689EPSS
In wildExploits3References4
CISA KEV Catalog
CISA KEV Catalog
added 2026/06/01 12:0 a.m.11 views

Oracle WebLogic Server Unspecified Vulnerability

Oracle WebLogic contains an unspecified vulnerability that could allow an unauthenticated attacker with network access via T3, IIOP to compromise Oracle WebLogic Server. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle...

7.5CVSS7.2AI score0.49689EPSS
In wildExploits3
GithubExploit
GithubExploit
added 2026/05/27 7:37 a.m.132 views

Exploit for Missing Authentication for Critical Function in Oracle Weblogic_Server

LAB 2 - CVE-2017-10271: WebLogic XMLDecoder Deserialization Wr...

7.5CVSS8.2AI score0.99993EPSS
Exploits45
Packet Storm
Packet Storm
added 2026/05/11 12:0 a.m.123 views

📄 Oracle WebLogic WLS-WSAT XMLDecoder Remote Code Execution

This script is a Python-based proof of concept exploit targeting a deserialization vulnerability in Oracle WebLogic Server's WLS-WSAT component. The vulnerability allows unauthenticated attackers to execute arbitrary system commands via crafted SOAP requests sent to the...

7.5CVSS7.7AI score0.99993EPSS
Exploits45
Tenable Nessus
Tenable Nessus
added 2026/04/23 12:0 a.m.5 views

Oracle WebLogic Server Unauthorized Access (April 2026 CPU)

The 12.2.1.4.0 version of WebLogic Server installed on the remote host is affected by a vulnerability as referenced in the April 2026 CPU advisory. - Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware component: Centralized Thirdparty Jars Validator. The supported...

7.3CVSS7.4AI score0.00615EPSS
Exploits0References3
Rows per page
Query Builder