Home » Tag Archives: Oracle WebLogic

Tag Archives: Oracle WebLogic

Oracle has released an urgent patch to eliminate critical vulnerabilities in WebLogic Server

Oracle WebLogic Vulnerability

The company said that an unknown group of cybercriminals in real attacks is already actively exploiting this security problem. The vulnerability received an identifier CVE-2019-27296, and, according to the CVSS scale, it received 9.8 points out of 10. “Due to the severity of this vulnerability, Oracle strongly recommends customers to apply updates as soon as possible”, — warn in Oracle. …

Read More »

Attackers actively exploit previously discovered vulnerability in Oracle WebLogic

Vulnerability in Oracle WebLogic

A recently fixed vulnerability in Oracle WebLogic is actively exploited by cybercriminals for installation on vulnerable servers of cryptocurrency miners. This is a deserialization vulnerability (CVE-2019-2725) that allows an unauthorized attacker to remotely execute commands. Problem was discovered in April this year, when cybercriminals had already shown interest in it. Oracle fixed vulnerability at the end of the same month, …

Read More »

In Oracle assessed seriousness of emerged issue and launched unplanned patch for WebLogic server

oracle weblogic under attack

By the end of last week, experts from Chinese KnownSec 404 company that stands behind IoT-searcher ZoomEye development, discovered dangerous issue in Oralce WebLogic. Bug presented a threat for all Oracle WebLogic servers with running components WLS9_ASYNC and WLS-WSAT. First component is necessary for performing asynchronous operations while the second is protective solution. Vulnerability is linked with deserialization and allows …

Read More »

In Oracle WebLogic is found vulnerability: specialist confirm that attacks through are ongoing

oracle weblogic under attack

Experts of Chinese company KnownSec 404 that developed IoT-searching engine ZoomEye, discovered dangerous vulnerability in Oracle WebLogic. According to ZoomEye, on the Internet can be found more than 36 000 available WebLogic Servers that are vulnerable behind the new problem. Majority of them are located in US and China. Researchers explain,that bug is dangerous for all servers Oracle WebLogic with …

Read More »