- Home
- CVEs with nessus.description==The version of Oracle WebLogic Server installed on the remote host is
affected by multiple vulnerabilities :
- A remote code execution vulnerability exists in the
JMXInvokerServlet interface due to unsafe deserialize
calls of unauthenticated Java objects to the Apache
Commons Collections (ACC) library. An unauthenticated,
remote attacker can exploit this to execute arbitrary
code. (CVE-2015-7501)
- An unspecified flaw exists in the Java Server Faces
subcomponent that allows an authenticated, remote
attacker to execute arbitrary code. (CVE-2016-3505)
- An unspecified flaw exists in the Web Container
subcomponent that allows an unauthenticated, remote
attacker to cause a denial of service condition.
(CVE-2016-5488)
- An unspecified flaw exists in the WLS-WebServices
subcomponent that allows an unauthenticated, remote
attacker to execute arbitrary code. (CVE-2016-5531)
- An unspecified flaw that allows an unauthenticated,
remote attacker to execute arbitrary code. No other
details are available. (CVE-2016-5535)
- An unspecified flaw exists in the CIE Related
subcomponent that allows a local attacker to impact
confidentiality and integrity. (CVE-2016-5601)
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top