Oracle

Weblogic Server

304 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.3

CVE-2021-35552

  • EPSS 1.6%
  • Veröffentlicht 20.10.2021 11:16:32
  • Zuletzt bearbeitet 21.11.2024 06:12:30

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Diagnostics). Supported versions that are affected are 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker...

7.5

CVE-2021-40690

  • EPSS 0.44%
  • Veröffentlicht 19.09.2021 18:15:07
  • Zuletzt bearbeitet 21.11.2024 06:24:34

All versions of Apache Santuario - XML Security for Java prior to 2.2.3 and 2.1.7 are vulnerable to an issue where the "secureValidation" property is not passed correctly when creating a KeyInfo from a KeyInfoReference element. This allows an attacke...

5

CVE-2021-2403

  • EPSS 1.82%
  • Veröffentlicht 21.07.2021 15:15:49
  • Zuletzt bearbeitet 21.11.2024 06:03:03

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core). Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthe...

7.5

CVE-2021-2397

  • EPSS 2.32%
  • Veröffentlicht 21.07.2021 15:15:45
  • Zuletzt bearbeitet 21.11.2024 06:03:02

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core). Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthe...

10

CVE-2021-2394

  • EPSS 90.23%
  • Veröffentlicht 21.07.2021 15:15:43
  • Zuletzt bearbeitet 21.11.2024 06:03:02

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core). Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthe...

7.5

CVE-2021-2382

  • EPSS 2.32%
  • Veröffentlicht 21.07.2021 15:15:37
  • Zuletzt bearbeitet 21.11.2024 06:03:00

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Security). Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows una...

5

CVE-2021-2376

  • EPSS 2.43%
  • Veröffentlicht 21.07.2021 15:15:35
  • Zuletzt bearbeitet 21.11.2024 06:02:59

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Web Services). Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows...

5

CVE-2021-2378

  • EPSS 1.87%
  • Veröffentlicht 21.07.2021 15:15:35
  • Zuletzt bearbeitet 21.11.2024 06:03:00

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core). Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthe...

5.1

CVE-2021-2351

Exploit
  • EPSS 3.54%
  • Veröffentlicht 21.07.2021 15:15:21
  • Zuletzt bearbeitet 21.11.2024 06:02:56

Vulnerability in the Advanced Networking Option component of Oracle Database Server. Supported versions that are affected are 12.1.0.2, 12.2.0.1 and 19c. Difficult to exploit vulnerability allows unauthenticated attacker with network access via Oracl...

5.3

CVE-2021-28170

Exploit
  • EPSS 0.08%
  • Veröffentlicht 26.05.2021 22:15:07
  • Zuletzt bearbeitet 21.11.2024 05:59:14

In the Jakarta Expression Language implementation 3.0.3 and earlier, a bug in the ELParserTokenManager enables invalid EL expressions to be evaluated as if they were valid.