Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Tag: weblogic-server Clear
ID Title
CVE-2026-46848 Vulnerability in c (CVE-2026-46848)
vulnerability in c (CVE-2026-46848). Confidential information can be exposed externally.
CVE-2026-35301 Vulnerability in c (CVE-2026-35301)
vulnerability in c (CVE-2026-35301). Successful exploitation can lead to full system takeover.
CVE-2026-35300 Unsafe Deserialization in c (CVE-2026-35300)
vulnerability in c (CVE-2026-35300). Successful exploitation can lead to full system takeover.
CVE-2026-35302 Open Redirect in c (CVE-2026-35302)
vulnerability in c (CVE-2026-35302). Successful exploitation can lead to full system takeover.
CVE-2026-35303 Vulnerability in c (CVE-2026-35303)
vulnerability in c (CVE-2026-35303). Successful exploitation can lead to full system takeover.
CVE-2026-35299 Vulnerability in c (CVE-2026-35299)
vulnerability in c (CVE-2026-35299). Successful exploitation can lead to full system takeover.
CVE-2026-35311 Vulnerability in c (CVE-2026-35311)
vulnerability in c (CVE-2026-35311). Successful exploitation can lead to full system takeover.
CVE-2026-35298 Vulnerability in c (CVE-2026-35298)
vulnerability in c (CVE-2026-35298). Successful exploitation can lead to full system takeover.
CVE-2026-35292 Vulnerability in c (CVE-2026-35292)
vulnerability in c (CVE-2026-35292). Successful exploitation can lead to full system takeover.
CVE-2026-35291 Privilege Escalation in c (CVE-2026-35291)
vulnerability in c (CVE-2026-35291). Successful exploitation can lead to full system takeover.
CVE-2026-35259 Open Redirect in c (CVE-2026-35259)
vulnerability in c (CVE-2026-35259). Successful exploitation can lead to full system takeover.
CVE-2026-35263 Vulnerability in c (CVE-2026-35263)
vulnerability in c (CVE-2026-35263). Successful exploitation can lead to full system takeover.
CVE-2026-35258 Open Redirect in c (CVE-2026-35258)
vulnerability in c (CVE-2026-35258). Confidential information can be exposed externally.
CVE-2024-21182 KEV Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core)...
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core)...
CVE-2020-2883 KEV [KEV] Vulnerability in Oracle weblogic-server (CVE-2020-2883)
vulnerability in Oracle weblogic-server (CVE-2020-2883). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-14644 KEV [KEV] Vulnerability in Oracle weblogic-server (CVE-2020-14644)
vulnerability in Oracle weblogic-server (CVE-2020-14644). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2017-3506 KEV [KEV] OS Command Injection in Oracle weblogic-server (CVE-2017-3506)
OS command injection in Oracle weblogic-server (CVE-2017-3506). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-21839 KEV [KEV] Vulnerability in Oracle weblogic-server (CVE-2023-21839)
vulnerability in Oracle weblogic-server (CVE-2023-21839). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2018-2628 KEV [KEV] Unsafe Deserialization in Oracle weblogic-server (CVE-2018-2628)
vulnerability in Oracle weblogic-server (CVE-2018-2628). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2017-10271 KEV [KEV] Vulnerability in Oracle weblogic-server (CVE-2017-10271)
vulnerability in Oracle weblogic-server (CVE-2017-10271). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2022-23305 SQL Injection in log4j:log4j (CVE-2022-23305)
SQL injection in log4j:log4j (CVE-2022-23305). Successful exploitation can lead to full system takeover.
CVE-2022-23307 Unsafe Deserialization in apache (CVE-2022-23307)
vulnerability in apache (CVE-2022-23307). Successful exploitation can lead to full system takeover.
CVE-2022-23302 Unsafe Deserialization in apache (CVE-2022-23302)
vulnerability in apache (CVE-2022-23302). Successful exploitation can lead to full system takeover.
CVE-2019-2725 KEV [KEV] Vulnerability in Oracle weblogic-server (CVE-2019-2725)
vulnerability in Oracle weblogic-server (CVE-2019-2725). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-44832 Vulnerability in org.apache.logging.log4j:log4j-core (CVE-2021-44832)
vulnerability in org.apache.logging.log4j:log4j-core (CVE-2021-44832). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `2.17.1` or later.
CVE-2021-45105 Vulnerability in org.apache.logging.log4j:log4j-core (CVE-2021-45105)
vulnerability in org.apache.logging.log4j:log4j-core (CVE-2021-45105). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.3.1` or later.
CVE-2021-4104 Unsafe Deserialization in apache (CVE-2021-4104)
vulnerability in apache (CVE-2021-4104). Successful exploitation can lead to full system takeover.
CVE-2020-14882 KEV [KEV] Vulnerability in Oracle weblogic-server (CVE-2020-14882)
vulnerability in Oracle weblogic-server (CVE-2020-14882). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-14883 KEV [KEV] Vulnerability in Oracle weblogic-server (CVE-2020-14883)
vulnerability in Oracle weblogic-server (CVE-2020-14883). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-14750 KEV [KEV] Vulnerability in Oracle weblogic-server (CVE-2020-14750)
vulnerability in Oracle weblogic-server (CVE-2020-14750). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2015-4852 KEV [KEV] Unsafe Deserialization in Oracle weblogic-server (CVE-2015-4852)
vulnerability in Oracle weblogic-server (CVE-2015-4852). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-9488 Vulnerability in org.apache.logging.log4j:log4j (CVE-2020-9488)
vulnerability in org.apache.logging.log4j:log4j (CVE-2020-9488). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.3.2` or later.
CVE-2019-17571 Unsafe Deserialization in log4j:log4j (CVE-2019-17571)
vulnerability in log4j:log4j (CVE-2019-17571). Successful exploitation can lead to full system takeover.
CVE-2017-15707 Vulnerability in apache (CVE-2017-15707)
vulnerability in apache (CVE-2017-15707). Risk of unauthorized operations or information disclosure.
CVE-2016-8610 Vulnerability in dos (CVE-2016-8610)
vulnerability in dos (CVE-2016-8610). Risk of unauthorized operations or information disclosure.
CVE-2017-10352 Vulnerability in c (CVE-2017-10352)
vulnerability in c (CVE-2017-10352). Risk of unauthorized operations or information disclosure.
CVE-2017-10334 Information Disclosure in c (CVE-2017-10334)
vulnerability in c (CVE-2017-10334). Risk of unauthorized operations or information disclosure.
CVE-2017-10336 Vulnerability in c (CVE-2017-10336)
vulnerability in c (CVE-2017-10336). Risk of unauthorized operations or information disclosure.
CVE-2017-10152 Information Disclosure in c (CVE-2017-10152)
vulnerability in c (CVE-2017-10152). Confidential information can be exposed externally.
CVE-2017-10178 Vulnerability in c (CVE-2017-10178)
vulnerability in c (CVE-2017-10178). Risk of unauthorized operations or information disclosure.
CVE-2017-10147 Vulnerability in c (CVE-2017-10147)
vulnerability in c (CVE-2017-10147). Risk of unauthorized operations or information disclosure.
CVE-2017-10137 Vulnerability in c (CVE-2017-10137)
vulnerability in c (CVE-2017-10137). Successful exploitation can lead to full system takeover.
CVE-2017-10148 Vulnerability in c (CVE-2017-10148)
vulnerability in c (CVE-2017-10148). Risk of unauthorized operations or information disclosure.
CVE-2017-10123 Vulnerability in c (CVE-2017-10123)
vulnerability in c (CVE-2017-10123). Risk of unauthorized operations or information disclosure.
CVE-2017-10063 Vulnerability in c (CVE-2017-10063)
vulnerability in c (CVE-2017-10063). Risk of unauthorized operations or information disclosure.
CVE-2017-3531 Vulnerability in c (CVE-2017-3531)
vulnerability in c (CVE-2017-3531). Risk of unauthorized operations or information disclosure.
CVE-2017-5645 Unsafe Deserialization in apache (CVE-2017-5645)
vulnerability in apache (CVE-2017-5645). Successful exploitation can lead to full system takeover.
CVE-2016-7103 Cross-Site Scripting (XSS) in jqueryui (CVE-2016-7103)
cross-site scripting in jqueryui (CVE-2016-7103). Risk of unauthorized operations or information disclosure.
CVE-2017-3248 Vulnerability in oracle (CVE-2017-3248)
vulnerability in oracle (CVE-2017-3248). Successful exploitation can lead to full system takeover.
CVE-2004-2320 Information Disclosure in express (CVE-2004-2320)
vulnerability in express (CVE-2004-2320). Risk of unauthorized operations or information disclosure.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →