CVE-2017-10271: Oracle Corporation WebLogic Server Remote Code Execution Vulnerability
First published: Thu Oct 19 2017(Updated: )
Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: WLS Security). Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0, 12.2.1.1.0 and 12.2.1.2.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via T3 to compromise Oracle WebLogic Server. Successful attacks of this vulnerability can result in takeover of Oracle WebLogic Server. CVSS 3.0 Base Score 7.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H).
Credit: secalert_us@oracle.com secalert_us@oracle.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Oracle WebLogic Server | ||
| Oracle WebLogic Server | =10.3.6.0.0 | |
| Oracle WebLogic Server | =12.1.3.0.0 | |
| Oracle WebLogic Server | =12.2.1.1.0 | |
| Oracle WebLogic Server | =12.2.1.2.0 | |
| =10.3.6.0.0 | ||
| =12.1.3.0.0 | ||
| =12.2.1.1.0 | ||
| =12.2.1.2.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html
- http://www.securityfocus.com/bid/101304
- http://www.securitytracker.com/id/1039608
- https://github.com/c0mmand3rOpSec/CVE-2017-10271
- https://www.exploit-db.com/exploits/43458/
- https://www.exploit-db.com/exploits/43924/
- https://nvd.nist.gov/vuln/detail/CVE-2017-10271
Frequently Asked Questions
What is the severity of CVE-2017-10271?
CVE-2017-10271 is considered to have a high severity rating due to its potential for exploitation by unauthenticated attackers.
How do I fix CVE-2017-10271?
To fix CVE-2017-10271, apply the latest patches provided by Oracle for affected versions of WebLogic Server.
What versions of Oracle WebLogic Server are affected by CVE-2017-10271?
CVE-2017-10271 affects Oracle WebLogic Server versions 10.3.6.0.0, 12.1.3.0.0, 12.2.1.1.0, and 12.2.1.2.0.
Can CVE-2017-10271 be exploited remotely?
Yes, CVE-2017-10271 can be exploited remotely by an unauthenticated attacker, making it particularly dangerous.
What should I do if my system is vulnerable to CVE-2017-10271?
If your system is vulnerable to CVE-2017-10271, immediately implement the recommended patches and monitor for any unusual activity.
- agent/type
- agent/softwarecombine
- agent/description
- agent/title
- agent/remedy
- agent/author
- agent/severity
- agent/references
- collector/mitre-cve
- source/MITRE
- agent/event
- agent/first-publish-date
- agent/weakness
- agent/source
- agent/tags
- agent/last-modified-date
- exploited/true
- ransomware/true
- collector/cisa-known-exploited
- source/CISA
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- collector/nvd-api
- source/NVD
- collector/nvd-cve
- collector/nvd-index
- vendor/oracle
- canonical/oracle weblogic server
- version/oracle weblogic server/10.3.6.0.0
- version/oracle weblogic server/12.1.3.0.0
- version/oracle weblogic server/12.2.1.1.0
- version/oracle weblogic server/12.2.1.2.0