Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
symantecSymantec Security ResponseSMNTC-108822
HistoryJun 18, 2019 - 12:00 a.m.

Oracle WebLogic Server Deserialization CVE-2019-2729 Remote Code Execution Vulnerability

2019-06-1800:00:00
Symantec Security Response
www.symantec.com
145
JSON

Description

Oracle WebLogic Server is prone to a remote code-execution vulnerability. A remote attacker can leverage this issue to execute arbitrary code within the context of the affected system. Failed exploit attempts may result in a denial-of-service condition. Oracle WebLogic Server 10.3.6.0.0, 12.1.3.0.0, and 12.2.1.3.0 are vulnerable.

Technologies Affected

  • Oracle Communications Converged Application Server 5.1
  • Oracle Communications Converged Application Server 7.0
  • Oracle Communications Converged Application Server 7.1
  • Oracle PeopleSoft Enterprise PeopleTools 8.56
  • Oracle PeopleSoft Enterprise PeopleTools 8.57
  • Oracle PeopleSoft Enterprise PeopleTools 8.58
  • Oracle StorageTek Tape Analytics SW Tool 2.3.0
  • Oracle Tape Library ACSLS 8.5
  • Oracle Weblogic Server 10.3.6.0.0
  • Oracle Weblogic Server 12.1.3.0.0
  • Oracle Weblogic Server 12.2.1.3.0

Recommendations

Deploy network intrusion detection systems to monitor network traffic for malicious activity.
Deploy NIDS to monitor network traffic for signs of anomalous or suspicious activity. This includes but is not limited to requests that include NOP sleds and unexplained incoming and outgoing traffic. This may indicate exploit attempts or activity that results from a successful exploit.

Do not accept or execute files from untrusted or unknown sources.
To limit exposure to these and other latent vulnerabilities, never handle files that originate from unfamiliar or untrusted sources.

Do not follow links provided by unknown or untrusted sources.
To reduce the likelihood of successful exploits, never visit sites of questionable integrity or follow links provided by unfamiliar or untrusted sources.

Run all software as a nonprivileged user with minimal access rights.
To reduce the impact of latent vulnerabilities, run applications with the minimal amount of privileges required for functionality.

Updates are available. Please see the references or vendor advisory for more information.

Related

thn 8
githubexploit 12
threatpost 9
securelist 1
checkpoint_advisories 2
prion 2
nessus 5
zdt 3
attackerkb 2
trendmicroblog 3
exploitpack 2
packetstorm 2
cisa 3
dsquare 1
cve 2
nuclei 2
f5 1
myhack58 2
saint 3
qualysblog 6
talosblog 4
metasploit 1
cisa_kev 1
exploitdb 3
malwarebytes 1
hivepro 1
impervablog 1
ics 1
kitploit 1
avleonov 1
oracle 5
thn
thn
New Critical Oracle WebLogic Flaw Under Active Attack โ€” Patch Now
2019-06-19 18:42:00
Hackers Found Exploiting Oracle WebLogic RCE Flaw to Spread Ransomware
2019-05-01 07:23:00
Microsoft Warns of Cryptomining Malware Campaign Targeting Linux Servers
2022-07-01 05:36:00
githubexploit
githubexploit
Exploit for Injection in Oracle Weblogic Server
2019-06-24 08:33:07
Exploit for Injection in Oracle Weblogic Server
2019-08-23 01:42:57
Exploit for Improper Access Control in Oracle Weblogic Server
2020-01-09 22:27:36
threatpost
threatpost
Oracle: Unpatched Versions of WebLogic App Server Under Active Attack
2020-05-04 14:57:51
Oracle WebLogic Server RCE Flaw Under Active Attack
2020-10-29 14:49:58
Oracle Warns of New Actively-Exploited WebLogic Flaw
2019-06-19 16:25:30
securelist
securelist
IT threat evolution Q3 2019
2019-11-29 10:00:12
checkpoint_advisories
checkpoint_advisories
Oracle Weblogic Insecure Deserialization (CVE-2019-2729)
2019-06-25 00:00:00
Oracle WebLogic Server Remote Code Execution (CVE-2019-2725)
2019-04-28 00:00:00
prion
prion
Design/Logic Flaw
2019-06-19 23:15:00
Design/Logic Flaw
2019-04-26 19:29:00
nessus
nessus
Oracle WebLogic Server Deserialization RCE (CVE-2019-2729)
2019-06-27 00:00:00
Oracle WebLogic Server Web Services Remote Code Execution Vulnerability
2019-06-19 00:00:00
Oracle WebLogic Server wls9_async_response / wls-wsat Remote Code Execution
2019-04-26 00:00:00
zdt
zdt
Oracle Weblogic 10.3.6.0.0 - Remote Command Execution Exploit
2020-01-09 00:00:00
Oracle #Weblogic 10.3.6.0.0 / 12.1.3.0.0 - Remote Code Execution Exploit #RCE
2019-05-01 00:00:00
Oracle Weblogic Server Deserialization Remote Code Execution Exploit
2019-05-07 00:00:00
attackerkb
attackerkb
CVE-2019-2729
2019-06-19 00:00:00
CVE-2019-2725
2019-04-26 00:00:00
trendmicroblog
trendmicroblog
This Week in Security News: Cyberespionage Campaigns and Botnet Malware
2019-06-21 19:16:21
This Week in Security News: Spam Campaigns and Cryptocurrency Miners
2019-06-14 13:25:23
This Week in Security News: Malvertising and Internet of Things Malware
2019-06-28 14:24:11
exploitpack
exploitpack
Oracle Weblogic 10.3.6.0.0 - Remote Command Execution
2020-01-09 00:00:00
Oracle Weblogic 10.3.6.0.0 12.1.3.0.0 - Remote Code Execution
2019-04-30 00:00:00
packetstorm
packetstorm
Oracle Weblogic 10.3.6.0.0 Remote Command Execution
2020-01-09 00:00:00
Oracle Weblogic Server Deserialization Remote Code Execution
2019-05-07 00:00:00
cisa
cisa
Oracle Releases Security Advisory for WebLogic
2019-06-19 00:00:00
Oracle Releases Security Alert
2019-04-26 00:00:00
CISA Adds 15 Known Exploited Vulnerabilities to Catalog
2022-01-10 00:00:00
dsquare
dsquare
Oracle WebLogic Server Web Services RCE
2020-01-08 00:00:00
cve
cve
CVE-2019-2729
2019-06-19 23:15:00
CVE-2019-2725
2019-04-26 19:29:00
nuclei
nuclei
Oracle WebLogic Server Administration Console - Remote Code Execution
2021-10-21 00:07:30
Oracle WebLogic Server - Remote Command Execution
2020-08-16 16:33:49
f5
f5
K90059138 : Oracle WebLogic Deserialization Remote Code Execution CVE-2019-2725
2019-04-30 00:00:00
myhack58
myhack58
WebLogic deserialization 0day vulnerability CVE-2019-2725 patch to bypass๏ผ‰early warning-vulnerability warning-the black bar safety net
2019-06-17 00:00:00
WebLogic Server re-aeration at high risk 0 day vulnerability-a vulnerability warning-the black bar safety net
2019-06-18 00:00:00
saint
saint
Oracle WebLogic Server deserialization remote code execution
2019-05-02 00:00:00
Oracle WebLogic Server deserialization remote code execution
2019-05-02 00:00:00
Oracle WebLogic Server deserialization remote code execution
2019-05-02 00:00:00
qualysblog
qualysblog
Introducing Periscope: Out-of-Band Vulnerability Detection Mechanism in Qualys WAS
2020-01-15 16:00:28
Identify Server-Side Attacks Using Qualys Periscope
2022-12-01 23:11:35
Russia-Ukraine Crisis: How to Strengthen Your Security Posture to Protect against Cyber Attack, based on CISA Guidelines
2022-02-26 20:20:32
talosblog
talosblog
Threat Source (May 2, 2019)
2019-05-02 11:00:01
Threat Source newsletter (May 9)
2019-05-09 11:00:02
Sodinokibi ransomware exploits WebLogic Server vulnerability
2019-05-01 12:37:18
metasploit
metasploit
Oracle Weblogic Server Deserialization RCE - AsyncResponseService
2019-04-26 01:03:17
cisa_kev
cisa_kev
Oracle WebLogic Server, Injection
2022-01-10 00:00:00
exploitdb
exploitdb
Oracle Weblogic 10.3.6.0.0 - Remote Command Execution
2020-01-09 00:00:00
Oracle Weblogic 10.3.6.0.0 / 12.1.3.0.0 - Remote Code Execution
2019-04-30 00:00:00
Oracle Weblogic Server - 'AsyncResponseService' Deserialization Remote Code Execution (Metasploit)
2019-05-08 00:00:00
malwarebytes
malwarebytes
Threat Spotlight: Sodinokibi ransomware attempts to fill GandCrab void
2019-07-18 17:58:26
hivepro
hivepro
Muhstik botnet adds another vulnerability exploit to its arsenal
2022-03-29 12:17:03
impervablog
impervablog
Imperva Detects Undocumented 8220 Gang Activities
2023-12-14 13:48:35
ics
ics
Understanding and Mitigating Russian State-Sponsored Cyber Threats to U.S. Critical Infrastructure
2022-03-01 12:00:00
kitploit
kitploit
Vulmap - Web Vulnerability Scanning And Verification Tools
2020-12-25 11:30:00
avleonov
avleonov
September 2023: VM courses, Bahasa Indonesia, Russian Podcasts, Goodbye Tinkoff, MS Patch Tuesday, Qualys TOP 20, Linux, Forrester, GigaOm, R-Vision VM
2023-09-30 19:31:42
oracle
oracle
Oracle Critical Patch Update Advisory - July 2019
2019-07-16 00:00:00
Oracle Critical Patch Update Advisory - July 2021
2021-07-20 00:00:00
Oracle Critical Patch Update Advisory - January 2020
2020-01-14 00:00:00
JSON
Related for SMNTC-108822
thn8githubexploit12threatpost9securelist1checkpoint_advisories2prion2nessus5zdt3attackerkb2trendmicroblog3exploitpack2packetstorm2cisa3dsquare1cve2nuclei2f51myhack582saint3qualysblog6talosblog4metasploit1cisa_kev1exploitdb3malwarebytes1hivepro1impervablog1ics1kitploit1avleonov1oracle5