Oracle

Weblogic Server

309 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.1

CVE-2020-11023

Warnung Exploit
  • EPSS 43.9%
  • Veröffentlicht 29.04.2020 21:15:11
  • Zuletzt bearbeitet 07.11.2025 19:32:52

In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may ex...

4.3

CVE-2020-9488

  • EPSS 0.03%
  • Veröffentlicht 27.04.2020 16:15:12
  • Zuletzt bearbeitet 21.11.2024 05:40:45

Improper validation of certificate with host mismatch in Apache Log4j SMTP appender. This could allow an SMTPS connection to be intercepted by a man-in-the-middle attack which could leak any log messages sent through that appender. Fixed in Apache Lo...

7.2

CVE-2020-2963

  • EPSS 1.54%
  • Veröffentlicht 15.04.2020 14:15:38
  • Zuletzt bearbeitet 21.11.2024 05:26:44

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Web Services). Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows high privil...

5.1

CVE-2020-2934

  • EPSS 0.16%
  • Veröffentlicht 15.04.2020 14:15:36
  • Zuletzt bearbeitet 21.11.2024 05:26:40

Vulnerability in the MySQL Connectors product of Oracle MySQL (component: Connector/J). Supported versions that are affected are 8.0.19 and prior and 5.1.48 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network ac...

9.8

CVE-2020-2883

Warnung
  • EPSS 94.36%
  • Veröffentlicht 15.04.2020 14:15:33
  • Zuletzt bearbeitet 27.10.2025 17:08:56

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core). Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated att...

9.8

CVE-2020-2884

  • EPSS 3.87%
  • Veröffentlicht 15.04.2020 14:15:33
  • Zuletzt bearbeitet 21.11.2024 05:26:32

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core). Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated att...

8.2

CVE-2020-2867

  • EPSS 1.31%
  • Veröffentlicht 15.04.2020 14:15:32
  • Zuletzt bearbeitet 21.11.2024 05:26:29

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Web Container). Supported versions that are affected are 12.1.3.0.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attack...

4.3

CVE-2020-2869

  • EPSS 1.22%
  • Veröffentlicht 15.04.2020 14:15:32
  • Zuletzt bearbeitet 21.11.2024 05:26:29

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Console). Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated ...

7.5

CVE-2020-2828

  • EPSS 2.37%
  • Veröffentlicht 15.04.2020 14:15:29
  • Zuletzt bearbeitet 21.11.2024 05:26:23

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: WLS Web Services). The supported version that is affected is 10.3.6.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access ...

4.9

CVE-2020-2829

  • EPSS 0.77%
  • Veröffentlicht 15.04.2020 14:15:29
  • Zuletzt bearbeitet 21.11.2024 05:26:23

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Management Services). The supported version that is affected is 10.3.6.0.0. Easily exploitable vulnerability allows high privileged attacker with network acce...