Oracle

Weblogic Server

304 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2020-2546

  • EPSS 29.69%
  • Published 15.01.2020 17:15:16
  • Last modified 21.11.2024 05:25:29

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Application Container - JavaEE). Supported versions that are affected are 10.3.6.0.0 and 12.1.3.0.0. Easily exploitable vulnerability allows unauthenticated a...

4.9

CVE-2020-2547

  • EPSS 0.31%
  • Published 15.01.2020 17:15:16
  • Last modified 21.11.2024 05:25:30

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Console). Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows high privileged ...

4.9

CVE-2020-2548

  • EPSS 0.31%
  • Published 15.01.2020 17:15:16
  • Last modified 21.11.2024 05:25:30

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: WLS Core Components). The supported version that is affected is 10.3.6.0.0. Easily exploitable vulnerability allows high privileged attacker with network acce...

4.3

CVE-2020-2519

  • EPSS 1.65%
  • Published 15.01.2020 17:15:15
  • Last modified 21.11.2024 05:25:26

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Console). Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated ...

9.8

CVE-2019-20330

  • EPSS 2%
  • Published 03.01.2020 04:15:12
  • Last modified 21.11.2024 04:38:16

FasterXML jackson-databind 2.x before 2.9.10.2 lacks certain net.sf.ehcache blocking.

9.8

CVE-2019-17571

  • EPSS 53.46%
  • Published 20.12.2019 17:15:11
  • Last modified 21.11.2024 04:32:33

Included in Log4j 1.2 is a SocketServer class that is vulnerable to deserialization of untrusted data which can be exploited to remotely execute arbitrary code when combined with a deserialization gadget when listening to untrusted network traffic fo...

6.1

CVE-2019-10219

  • EPSS 1.67%
  • Published 08.11.2019 15:15:11
  • Last modified 07.07.2025 14:15:21

A vulnerability was found in Hibernate-Validator. The SafeHtml validator annotation fails to properly sanitize payloads consisting of potentially malicious code in HTML comments and instructions. This vulnerability can result in an XSS attack.

4.3

CVE-2019-2887

  • EPSS 0.33%
  • Published 16.10.2019 18:15:26
  • Last modified 21.11.2024 04:41:44

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Web Services). Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0 and 12.2.1.3.0. Easily exploitable vulnerability allows low privileged attacker...

5.3

CVE-2019-2888

  • EPSS 78.68%
  • Published 16.10.2019 18:15:26
  • Last modified 21.11.2024 04:41:44

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: EJB Container). Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0 and 12.2.1.3.0. Easily exploitable vulnerability allows unauthenticated attack...

6.1

CVE-2019-2889

  • EPSS 1.16%
  • Published 16.10.2019 18:15:26
  • Last modified 21.11.2024 04:41:44

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Sample apps). The supported version that is affected is 12.2.1.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via H...