- Home
- CVEs with nessus.description==The version of Oracle WebLogic Server installed on the remote host is
affected by multiple vulnerabilities:
- An unspecified vulnerability in the Spring Framework
(Sample Apps) subcomponent in Oracle WebLogic allows
an unauthenticated, remote attacker to takeover a
WebLogic server. (CVE-2018-1275)
- An unspecified vulnerability in the WLS Core Components
subcomponent in Oracle WebLogic allows an
unauthenticated, remote attacker to takeover a
WebLogic server. (CVE-2018-2893)
- An unspecified vulnerability in the WLS - Web Services
subcomponent in Oracle WebLogic allows an
unauthenticated, remote attacker with HTTP access to
compromise and takeover a WebLogic server.
(CVE-2018-2894)
In addition, Oracle WebLogic Server is affected by several other lower
scoring vulnerabilities in the WLS Core Components, JSF, SAML, and
Console (jackson-databind) subcomponents.
Note that Nessus has not tested for these issues but has instead
relied only on the application's self-reported version number.
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top