WebLogic

Weblogic High Risk Vulnerability Threat Alert

November 1, 2019

Overview

Recently, Oracle fixed two high-risk vulnerabilities in Weblogic (CVE-2019-2890 and CVE-2019-2891)  in its October critical patch update.

References:

https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html

(more…)

WebLogic Remote Code Execution Vulnerability(CVE-2018-3245) Threat Alert

October 22, 2018

Overview

On October 16, local time (early morning on October 17, Beijing time), Oracle officially released the October (third quarter) Critical Patch Update (CPU), which fixes a July (second quarter) CPU patch. The WebLogic remote code execution vulnerability (CVE-2018-2893) has not been fully fixed. The newly fixed vulnerability is assigned CVE-2018-3245. (more…)