March 12, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
Rewterz Threat Alert – Tech Support Scam Employs New Trick by Using Iframe to Freeze Browsers
April 30, 2019Rewterz Threat Advisory – Sodinokibi ransomware exploits WebLogic Server vulnerability
May 2, 2019Rewterz Threat Alert – Tech Support Scam Employs New Trick by Using Iframe to Freeze Browsers
April 30, 2019Rewterz Threat Advisory – Sodinokibi ransomware exploits WebLogic Server vulnerability
May 2, 2019
Severity
High
Analysis Summary
A deserialization vulnerability in Oracle WebLogic Server. This remote code execution vulnerability is remotely exploitable without authentication, i.e., may be exploited over a network without the need for a username and password.
Impact
Remote code execution
Affected Vendors
Oracle
Affected Products
- Oracle WebLogic Server 10.3.6.0
- Oracle WebLogic Server 12.1.3.0
Remediation
Vendor has released patch for the following product.