CVE-2026-35301

Vulnerability in the WebLogic Server product of Oracle Fusion Middleware component: Console. Supported versions that are affected are 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise WebLogic Server. While the...

CVE-2026-35259

Vulnerability in the WebLogic Server product of Oracle Fusion Middleware component: Console. Supported versions that are affected are 14.1.2.0.0 and 15.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTPS to compromise WebLogic Server. Successful...

CVE-2021-2109

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware component: Console. Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP...

The vulnerability of the Console component of the Oracle WebLogic Server application server allows a attacker to gain read access to data or modify data.

The vulnerability of the Console component of the Oracle WebLogic Server application lies in reading data beyond the buffer in memory. Exploiting this vulnerability allows a malicious actor to gain access to read data or modify data through specially crafted HTTP requests...

CVE-2022-21453

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware component: Console. Supported versions that are affected are 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle...

The vulnerability of the Console component of the Oracle WebLogic Server application server allows a attacker to access, modify, add, or delete data.

The vulnerability of the Console component of the Oracle WebLogic Server application exists due to insufficient validation of input data. Exploiting this vulnerability allows an attacker, operating remotely, to gain access to modify, add, or delete data through HTTP requests...

CVE-2021-2142

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware component: Console. The supported version that is affected is 10.3.6.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle WebLogic Server. Successful...

CVE-2020-14883

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware component: Console. Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP...

Command Execution Vulnerability in Oracle WebLogic Console (CNVD-2020-59803)

WebLogic Server is Oracle's JavaEE-based middleware for developing, integrating, deploying and managing large-scale distributed Web applications, web applications and database applications. A command execution vulnerability exists in Oracle Weblogic Server. An attacker can exploit the vulnerabili...

CVE-2020-2869

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware component: Console. Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromi...

CVE-2020-2811

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware component: Console. Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromi...

The vulnerability of the Console component of Oracle WebLogic Server allows a perpetrator to gain access to modify, add, or delete data.

The vulnerability of the Console component of Oracle WebLogic Server is related to deficiencies in access control. Exploiting this vulnerability allows an attacker, operating remotely, to gain access to modify, add, or delete data using the HTTP protocol...

The vulnerability of the Console component of Oracle WebLogic Server allows a attacker to cause a partial service failure.

The vulnerability of the Console component of Oracle WebLogic Server is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker to cause a partial service outage using the HTTP protocol...

CVE-2020-2519

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware component: Console. Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromi...

Unspecified Vulnerability in Oracle WebLogic Server (CNVD-2020-08164)

Oracle Fusion Middleware, the digital business platform for enterprise and cloud computing, is a comprehensive family of middleware products that enable organizations to create and run agile, intelligent business applications and maximize IT efficiencies by leveraging modern hardware and software...

Oracle Fusion Middleware Oracle WebLogic Server Component Remote Vulnerability (CNVD-2018-13568)

Oracle Fusion Middleware Oracle Fusion Middleware is a set of business innovation platforms for enterprise and cloud environments from Oracle. The platform provides middleware, software collection, etc. Oracle WebLogic Server is one of the application server components for cloud and traditional...

Vulnerability of WebLogic Server software, allowing a remote attacker to compromise protected information

The vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware allows remote users who have passed authentication to compromise data integrity by using the WLS Console...

CVE-2013-2390

Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.0.2, 10.3.5, 10.3.6, and 12.1.1 allows remote attackers to affect integrity via unknown vectors related to WebLogic Console, a different vulnerability than CVE-2013-1504...

CVE-2013-1504

Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.0.2, 10.3.5, 10.3.6, and 12.1.1 allows remote attackers to affect integrity via unknown vectors related to WebLogic Console, a different vulnerability than CVE-2013-2390...

Oracle WebLogic WLS Unspecified Vulnerability (CVE-2008-5461)

According to its self-reported banner, the version of Oracle WebLogic Server running on the remote host has an unspecified vulnerability in WebLogic Console that can be exploited remotely and may allow information disclosure and elevation of privileges. %NASLMINLEVEL 70300 C Tenable Network...