Lucene search

K
vulnrichmentOracleVULNRICHMENT:CVE-2018-2893
HistoryJul 18, 2018 - 1:00 p.m.

CVE-2018-2893

2018-07-1813:00:00
oracle
github.com
2
oracle
weblogic
server
fusion middleware
vulnerability
network access
cvss

AI Score

7.3

Confidence

Low

SSVC

Exploitation

none

Automatable

yes

Technical Impact

total

Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: WLS Core Components). Supported versions that are affected are 10.3.6.0, 12.1.3.0, 12.2.1.2 and 12.2.1.3. Easily exploitable vulnerability allows unauthenticated attacker with network access via T3 to compromise Oracle WebLogic Server. Successful attacks of this vulnerability can result in takeover of Oracle WebLogic Server. CVSS 3.0 Base Score 9.8 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H).

AI Score

7.3

Confidence

Low

SSVC

Exploitation

none

Automatable

yes

Technical Impact

total