Threat Post

Oracle: Unpatched Versions of WebLogic App Server Under Active Attack

CVE-2020-2883 was patched in Oracle’s April 2020 Critical Patch Update – but proof of concept exploit code was published shortly after. Oracle is urging customers to fast-track a patch for a critical ...
Security Boulevard

What We Know About the New Oracle WebLogic Vulnerabilities

We are currently seeing an Oracle WebLogic vulnerability getting some attention as exploit code was published by multiple sources. Oracle provided patches on January 17, 2023 with the latest Critical ...
ZDNet

Oracle patches another actively-exploited WebLogic zero-day

Oracle released an out-of-band security update to fix a vulnerability in WebLogic servers that was being actively exploited in the real world to hijack users' systems. Attacks using this vulnerability ...
adtmag.com

Oracle WebLogic Server 12c To Feature Cloud, Java EE 6 and Java 7 Support

Oracle on Thursday previewed a major update of its WebLogic app server. Oracle WebLogic Server 12c is being billed as the corner stone of the company's Cloud Application Foundation and a core ...
ZDNet

Oracle warns of attacks against recently patched WebLogic security bug

Enterprise software giant Oracle published an urgent security alert last night, urging companies that run WebLogic servers to install the latest patches the company released in mid-April. Oracle says ...
Threat Post

Muhstik Botnet Variant Targets Just-Patched Oracle WebLogic Flaw

Researchers are urging Oracle WebLogic users to update quickly – after new Muhstik botnet samples started targeting a critical flaw in the servers. A variant of the Muhstik botnet has been uncovered ...