First published: Wed Jan 18 2023(Updated: )
Credit: secalert_us@oracle.com
Affected Software | Affected Version | How to fix |
---|---|---|
Oracle WebLogic Server | =12.2.1.3.0 | |
Oracle WebLogic Server | =12.2.1.4.0 | |
Oracle WebLogic Server | =14.1.1.0.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID of this Oracle WebLogic Server vulnerability is CVE-2023-21837.
This vulnerability affects the Core component of Oracle Fusion Middleware.
This vulnerability affects versions 12.2.1.3.0, 12.2.1.4.0, and 14.1.1.0.0 of Oracle WebLogic Server.
Yes, this vulnerability is easily exploitable.
An unauthenticated attacker with network access via IIOP can exploit this vulnerability to compromise Oracle WebLogic Server.
The severity rating of this Oracle WebLogic Server vulnerability is high, with a severity value of 7.5.
You can find more information about this vulnerability in the Oracle Security Advisory at https://www.oracle.com/security-alerts/cpujan2023.html.