VulnCheck KEV: CVE-2020-14644

Oracle WebLogic Server, a product within the Fusion Middleware suite, contains a deserialization vulnerability. Unauthenticated attackers with network access via T3 or IIOP can exploit this vulnerability to achieve remote code execution...

The vulnerability of the Web Services component of the Oracle WebLogic Server application server, a software platform of Oracle Fusion Middleware, allows attackers to cause service failures.

The vulnerability of the Web Services component of the Oracle WebLogic Server application server, a software platform of Oracle Fusion Middleware, is related to improper cleaning or release of resources. Exploiting this vulnerability can allow an attacker to cause service failures using the T3...

CVE-2022-21350

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware component: Core. Supported versions that are affected are 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via T3 to compromise...

The vulnerability of Oracle WebLogic Server’s application server core components allows a hacker to gain full control over the application.

The vulnerability of Oracle WebLogic Server’s application server components is related to deficiencies in access control. Exploiting this vulnerability allows a malicious actor to gain full control over the application through network IIOP and T3 protocols...

The vulnerability of the Core server component of Oracle WebLogic Server allows a hacker to gain full control over the application.

The vulnerability of the Core server component of Oracle WebLogic Server is related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to gain full control over the application using IIOP and T3 protocols...

The vulnerability of the Core server component of Oracle WebLogic Server allows a hacker to execute arbitrary code.

The vulnerability of the Core server component of Oracle WebLogic Server is related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using IIOP and T3 protocols from a remote location...

VulnCheck KEV: CVE-2020-2555

Multiple Oracle products contain a remote code execution vulnerability that allows an unauthenticated attacker with network access via T3 or HTTP to takeover the affected system. Impacted Oracle products: Oracle Coherence in Fusion Middleware, Oracle Utilities Framework, Oracle Retail...

The vulnerability of the WLS Web Services component of the Oracle WebLogic Server application server allows a attacker to gain full control over the application.

The vulnerability of the WLS Web Services component of the Oracle WebLogic Server application server is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker to gain full control over the application through the IIOP and T3 network protocols...

The vulnerability of the Web Services sub-component of the Oracle WebLogic Server application server, a software platform of Oracle Fusion Middleware, allows a perpetrator to gain full control over the application.

The vulnerability of the Web Services sub-component of the Oracle WebLogic Server application server of the Oracle Fusion Middleware software platform is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain full contro...

The vulnerability of the WLS Core Components of the Oracle WebLogic Server application server allows a perpetrator to gain unauthorized access to protected data.

The vulnerability of the WLS Core Components of the WebLogic Server application server is related to access control deficiencies. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected data using the T3 protocol...

The vulnerability of Docker images of Oracle WebLogic Server application servers allows a hacker to gain access to protected information.

The vulnerability of Oracle WebLogic Server application server Docker images is related to insufficient access control. Exploiting this vulnerability could allow an attacker to gain access to protected information using the T3 protocol...

CVE-2018-3197

Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware subcomponent: WLS Core Components. The supported version that is affected is 12.1.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via T3 to compromise Oracle WebLogic Server...

Oracle WebLogic Server Remote Code Execution Vulnerability

Oracle WebLogic Server is an Oracle application server for cloud and legacy environments that provides a modern lightweight development platform that supports the entire lifecycle management of applications from development to production and simplifies application deployment and management.WLS...