{"vulnerability": "cve-2024-2118", "sightings": [{"uuid": "8298306d-6140-48e5-8768-c9fa92a6743d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2024-21182", "type": "seen", "source": "https://bsky.app/profile/kyosuke-tanaka.bsky.social/post/3lenisuth4s22", "content": "", "creation_timestamp": "2025-01-01T02:20:51.622996Z"}, {"uuid": "09cc10cb-baa0-45b3-996f-3d671efe6e63", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21182", "type": "seen", "source": "https://bsky.app/profile/bolhasec.com/post/3leo5hi2hil2a", "content": "", "creation_timestamp": "2025-01-01T08:30:17.206481Z"}, {"uuid": "48b7201c-1283-4c2b-a86d-1e6dacef6334", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21182", "type": "seen", "source": "https://bsky.app/profile/tmjintel.bsky.social/post/3leormlhvin25", "content": "", "creation_timestamp": "2025-01-01T14:31:03.769806Z"}, {"uuid": "1e2607cb-eecb-4a11-abe6-4319f33e0a96", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21181", "type": "seen", "source": "https://bsky.app/profile/cyberalerts.bsky.social/post/3llettgmcmi2o", "content": "", "creation_timestamp": "2025-03-27T17:40:23.757547Z"}, {"uuid": "1d028f96-4fad-4ff5-af74-12af1a2241c8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21182", "type": "seen", "source": "MISP/f7787455-9994-4047-b6f7-77347597c104", "content": "", "creation_timestamp": "2025-08-26T18:36:20.000000Z"}, {"uuid": "5d5274eb-cb15-45ed-b141-9c3cd953a4bf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21182", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/9640", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2024\n\u63cf\u8ff0\uff1aPoC for CVE-2024021182\nURL\uff1ahttps://github.com/k4it0k1d/CVE-2024-21182\n\n\u6807\u7b7e\uff1a#CVE-2024", "creation_timestamp": "2024-12-29T15:51:23.000000Z"}, {"uuid": "d898807a-2e9a-4f76-b59f-35f0265168d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21182", "type": "published-proof-of-concept", "source": "https://t.me/CyberBulletin/1926", "content": "\u26a1\ufe0fCVE-2024-21182 : Allows unauthenticated attacker with network access via T3, IIOP to compromise Oracle WebLogic Server\n\nPoC : https://github.com/k4it0k1d/CVE-2024-21182\n\n#CyberBulletin", "creation_timestamp": "2025-01-03T06:32:56.000000Z"}, {"uuid": "0ac580de-4dc8-4c61-bcbf-490a0d355177", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21183", "type": "seen", "source": "https://t.me/cvedetector/1041", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-21183 - Oracle WebLogic Server Remote Unauthenticated Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-21183 \nPublished : July 16, 2024, 11:15 p.m. | 44\u00a0minutes ago \nDescription : Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core).  Supported versions that are affected are 12.2.1.4.0 and  14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via T3, IIOP to compromise Oracle WebLogic Server.  Successful attacks of this vulnerability can result in  unauthorized access to critical data or complete access to all Oracle WebLogic Server accessible data. CVSS 3.1 Base Score 7.5 (Confidentiality impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N). \nSeverity: 7.5 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-17T02:20:14.000000Z"}, {"uuid": "e7b1c9db-e602-4e15-a8d0-63e62d1d6dc7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21181", "type": "seen", "source": "https://t.me/cvedetector/1040", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-21181 - \"Oracle WebLogic Server Core Remote Code Execution Vulnerability\"\", \n  \"Content\": \"CVE ID : CVE-2024-21181 \nPublished : July 16, 2024, 11:15 p.m. | 44\u00a0minutes ago \nDescription : Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core).  Supported versions that are affected are 12.2.1.4.0 and  14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via T3, IIOP to compromise Oracle WebLogic Server.  Successful attacks of this vulnerability can result in takeover of Oracle WebLogic Server. CVSS 3.1 Base Score 9.8 (Confidentiality, Integrity and Availability impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H). \nSeverity: 9.8 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-17T02:20:13.000000Z"}, {"uuid": "d860bd29-be21-4e30-bad5-07c7deb8a2cf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21180", "type": "seen", "source": "https://t.me/cvedetector/1043", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-21180 - Oracle PeopleSoft OpenSearch Dashboards HTTP Misconfigured Search Criteria Disclosure\", \n  \"Content\": \"CVE ID : CVE-2024-21180 \nPublished : July 16, 2024, 11:15 p.m. | 44\u00a0minutes ago \nDescription : Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component: OpenSearch Dashboards).  Supported versions that are affected are 8.59, 8.60 and  8.61. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise PeopleTools.  Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in PeopleSoft Enterprise PeopleTools, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in  unauthorized read access to a subset of PeopleSoft Enterprise PeopleTools accessible data. CVSS 3.1 Base Score 4.1 (Confidentiality impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:N/A:N). \nSeverity: 4.1 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-17T02:20:17.000000Z"}, {"uuid": "222ee949-f6c2-4443-b796-d0c302180107", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21182", "type": "seen", "source": "https://t.me/cvedetector/1042", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-21182 - Oracle WebLogic Server Remote Unauthorized Access Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-21182 \nPublished : July 16, 2024, 11:15 p.m. | 44\u00a0minutes ago \nDescription : Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core).  Supported versions that are affected are 12.2.1.4.0 and  14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via T3, IIOP to compromise Oracle WebLogic Server.  Successful attacks of this vulnerability can result in  unauthorized access to critical data or complete access to all Oracle WebLogic Server accessible data. CVSS 3.1 Base Score 7.5 (Confidentiality impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N). \nSeverity: 7.5 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-17T02:20:15.000000Z"}, {"uuid": "19b0d7cb-cda6-4236-a1a6-6f25c304ebbd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21188", "type": "seen", "source": "https://t.me/cvedetector/1039", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-21188 - Oracle Financial Services Revenue Management and Billing HTTP Chatbot Authentication Bypass\", \n  \"Content\": \"CVE ID : CVE-2024-21188 \nPublished : July 16, 2024, 11:15 p.m. | 44\u00a0minutes ago \nDescription : Vulnerability in the Oracle Financial Services Revenue Management and Billing product of Oracle Financial Services Applications (component: Chatbot).  Supported versions that are affected are 6.0.0.0.0 and  6.1.0.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Financial Services Revenue Management and Billing.  Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Oracle Financial Services Revenue Management and Billing, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in  unauthorized update, insert or delete access to some of Oracle Financial Services Revenue Management and Billing accessible data as well as  unauthorized read access to a subset of Oracle Financial Services Revenue Management and Billing accessible data. CVSS 3.1 Base Score 6.1 (Confidentiality and Integrity impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N). \nSeverity: 6.1 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-17T02:20:09.000000Z"}, {"uuid": "3f179003-7646-4c83-a899-b4de477cd0bb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21185", "type": "seen", "source": "https://t.me/cvedetector/1038", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-21185 - Oracle MySQL MySQL Server Unauthenticated High Privilege Denial of Service\", \n  \"Content\": \"CVE ID : CVE-2024-21185 \nPublished : July 16, 2024, 11:15 p.m. | 44\u00a0minutes ago \nDescription : Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB).  Supported versions that are affected are 8.0.38, 8.4.1 and  9.0.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server.  Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). \nSeverity: 4.9 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-17T02:20:08.000000Z"}, {"uuid": "26a6b7c2-526e-495f-b85d-f4daae884f97", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21184", "type": "seen", "source": "https://t.me/cvedetector/1031", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-21184 - Oracle Database RDBMS Security XS_DIAG Privilege Escalation Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-21184 \nPublished : July 16, 2024, 11:15 p.m. | 44\u00a0minutes ago \nDescription : Vulnerability in the Oracle Database RDBMS Security component of Oracle Database Server.  Supported versions that are affected are 19.3-19.23. Easily exploitable vulnerability allows high privileged attacker having Execute on SYS.XS_DIAG privilege with network access via Oracle Net to compromise Oracle Database RDBMS Security.  Successful attacks of this vulnerability can result in takeover of Oracle Database RDBMS Security. CVSS 3.1 Base Score 7.2 (Confidentiality, Integrity and Availability impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H). \nSeverity: 7.2 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-17T02:19:59.000000Z"}, {"uuid": "cb495f7e-ecc9-4315-96a3-2c30ae125aed", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21181", "type": "seen", "source": "https://t.me/HackingInsights/6632", "content": "\u200aOracle WebLogic Users Urged to Patch Critical Vulnerability (CVE-2024-21181, CVSS 9.8)\n\nhttps://securityonline.info/oracle-weblogic-users-urged-to-patch-critical-vulnerability-cve-2024-21181-cvss-9-8/", "creation_timestamp": "2024-07-19T10:45:24.000000Z"}, {"uuid": "f3417be0-9b4c-45d5-b1c7-8f2e53c4d118", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21182", "type": "published-proof-of-concept", "source": "https://t.me/CyberDilara/1394", "content": "#Github #Tools\n\nSlides for COM Hijacking AV/EDR Talk on 38c3\n\nhttps://github.com/0x4d5a-ctf/38c3_com_talk\n\nPoC for CVE-2024-21182\n\nhttps://github.com/k4it0k1d/CVE-2024-21182\n\nRustScan in Rust\n\nhttps://github.com/spacialsec/RustScan\n\nA Hex Editor for Reverse Engineers, Programmers.\n\nhttps://github.com/WerWolv/ImHex\n\nRed-Team-Exercises\n\nhttps://github.com/CyberSecurityUP/Red-Team-Exercises\n\nRecon tool to help you search vulnerability on web server.\n\nhttps://github.com/x0rr-dan/s1c0n\n\n#HackersForum", "creation_timestamp": "2024-12-31T02:57:20.000000Z"}, {"uuid": "da86e3d4-af5c-41f1-835e-c2b5185a1dd6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21182", "type": "published-proof-of-concept", "source": "https://t.me/GrayHatsHack/9339", "content": "\u26a1\ufe0fCVE-2024-21182 : Allows unauthenticated attacker with network access via T3, IIOP to compromise Oracle WebLogic Server\n\nPoC : https://github.com/k4it0k1d/CVE-2024-21182\n\n#CyberBulletin", "creation_timestamp": "2025-01-06T06:33:13.000000Z"}, {"uuid": "d045301a-08f4-4dd9-a166-c03ae16e6b36", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21182", "type": "published-proof-of-concept", "source": "https://t.me/GrayHatsHack/9229", "content": "#Github #Tools\n\nSlides for COM Hijacking AV/EDR Talk on 38c3\n\nhttps://github.com/0x4d5a-ctf/38c3_com_talk\n\nPoC for CVE-2024-21182\n\nhttps://github.com/k4it0k1d/CVE-2024-21182\n\nRustScan in Rust\n\nhttps://github.com/spacialsec/RustScan\n\nA Hex Editor for Reverse Engineers, Programmers.\n\nhttps://github.com/WerWolv/ImHex\n\nRed-Team-Exercises\n\nhttps://github.com/CyberSecurityUP/Red-Team-Exercises\n\nRecon tool to help you search vulnerability on web server.\n\nhttps://github.com/x0rr-dan/s1c0n\n\n#HackersForum", "creation_timestamp": "2024-12-31T02:57:24.000000Z"}, {"uuid": "c0e9a76f-e241-4151-8f77-189cf88dc260", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21182", "type": "published-proof-of-concept", "source": "https://t.me/dilagrafie/4053", "content": "#Github #Tools\n\nSlides for COM Hijacking AV/EDR Talk on 38c3\n\nhttps://github.com/0x4d5a-ctf/38c3_com_talk\n\nPoC for CVE-2024-21182\n\nhttps://github.com/k4it0k1d/CVE-2024-21182\n\nRustScan in Rust\n\nhttps://github.com/spacialsec/RustScan\n\nA Hex Editor for Reverse Engineers, Programmers.\n\nhttps://github.com/WerWolv/ImHex\n\nRed-Team-Exercises\n\nhttps://github.com/CyberSecurityUP/Red-Team-Exercises\n\nRecon tool to help you search vulnerability on web server.\n\nhttps://github.com/x0rr-dan/s1c0n\n\n#HackersForum", "creation_timestamp": "2024-12-31T02:57:13.000000Z"}, {"uuid": "3f498757-3242-411b-a47d-0c00f364770d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21182", "type": "seen", "source": "https://t.me/proxy_bar/2464", "content": "CVE-2024-21182\nOracle WebLogic Server JNDI Vulnerability\nLink", "creation_timestamp": "2024-12-31T17:38:06.000000Z"}, {"uuid": "aae1911a-c78b-4e2c-a633-5275fe1227b0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21182", "type": "published-proof-of-concept", "source": "https://t.me/GrayHatsHack/7807", "content": "#Github #Tools\n\nSlides for COM Hijacking AV/EDR Talk on 38c3\n\nhttps://github.com/0x4d5a-ctf/38c3_com_talk\n\nPoC for CVE-2024-21182\n\nhttps://github.com/k4it0k1d/CVE-2024-21182\n\nRustScan in Rust\n\nhttps://github.com/spacialsec/RustScan\n\nA Hex Editor for Reverse Engineers, Programmers.\n\nhttps://github.com/WerWolv/ImHex\n\nRed-Team-Exercises\n\nhttps://github.com/CyberSecurityUP/Red-Team-Exercises\n\nRecon tool to help you search vulnerability on web server.\n\nhttps://github.com/x0rr-dan/s1c0n\n\n#HackersForum", "creation_timestamp": "2024-12-31T02:57:24.000000Z"}, {"uuid": "efe0c639-8632-4974-bfab-6d8d644924a1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21182", "type": "published-proof-of-concept", "source": "https://t.me/CyberBulletin/27030", "content": "\u26a1\ufe0fCVE-2024-21182 : Allows unauthenticated attacker with network access via T3, IIOP to compromise Oracle WebLogic Server\n\nPoC : https://github.com/k4it0k1d/CVE-2024-21182\n\n#CyberBulletin", "creation_timestamp": "2025-01-03T06:32:56.000000Z"}, {"uuid": "efed2d2d-f931-40af-b061-c000bc2ba061", "vulnerability_lookup_origin": "405284c2-e461-4670-8979-7fd2c9755a60", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21182", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/617805ef-903a-4a2b-908c-995f178d2650", "content": "", "creation_timestamp": "2026-06-01T18:00:02.554288Z"}, {"uuid": "6b0c75cb-9f1b-4dab-a660-be7c325154d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21182", "type": "seen", "source": "https://feedsin.space/feed/CISAKevBot/items/6629632", "content": "2026-06-01: [CVE-2024-21182] Oracle WebLogic Server Unspecified VulnerabilityOracle WebLogic contains an unspecified vulnerability that could allow an unauthenticated attacker with network access via T3, IIOP to compromise Oracle WebLogic Server. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle WebLogic Server accessible data.\ncisakev", "creation_timestamp": "2026-06-01T19:38:27.773443Z"}, {"uuid": "f7c9694d-5b5a-496a-9980-93b1f36cad37", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21182", "type": "seen", "source": "https://bsky.app/profile/cvesentinel.bsky.social/post/3mnaun3eu6w2n", "content": "\ud83d\uded1 CVE-2024-21182\nOracle WebLogic Server\nCVSS 7.5 / EPSS 88% / KEV\nTL;DR: Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (compon\u2026\nhttps://cvesentinel.com/report/CVE-2024-21182?utm_source=bluesky&utm_medium=social&utm_campaign=cvesentinel\n#infosec #CVE #vulnerability", "creation_timestamp": "2026-06-01T20:02:48.113540Z"}, {"uuid": "89c3fab2-03ed-4ab5-adf5-ef5d9cf379da", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2024-21182", "type": "seen", "source": "https://cyber.gc.ca/en/alerts-advisories/oracle-security-advisory-july-2024-quarterly-rollup-av24-401", "content": "", "creation_timestamp": "2026-06-01T10:39:35.000000Z"}, {"uuid": "b4cabd86-0140-4edf-b975-ef07b7c93572", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21182", "type": "seen", "source": "https://bsky.app/profile/happeningnow.news/post/3mnbdsib7h42f", "content": "CISA Adds One Known Exploited Vulnerability to Catalog\nCISA has added one new vulnerability to its  Known Exploited Vulnerabilities (KEV) Catalog , based on evidence of active exploitation. CVE-2024-21182 Oracle WebLogic Server\u2026\n\n\ud83d\udd17 https://hnow.live/a/428ea6e0", "creation_timestamp": "2026-06-02T00:32:08.616611Z"}, {"uuid": "6194c5d7-0d46-4fb2-a1ea-10a643b2075b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21182", "type": "seen", "source": "https://bsky.app/profile/infosecbriefly.bsky.social/post/3mncje4tdko2b", "content": "CISA warns that Oracle WebLogic CVE-2024-21182 is being exploited remotely and without authentication, and federal agencies must remediate it by June 4.\n", "creation_timestamp": "2026-06-02T11:44:09.303694Z"}, {"uuid": "27303278-cdc1-4e41-9b20-a50a1db59392", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21182", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3mnckruvagtu2", "content": "Oracle WebLogic Vulnerability Exploited in the Wild The vulnerability is CVE-2024-21182 and it can be exploited without authentication to hack affected WebLogic servers. The post Oracle WebLogic Vu...\n\n#Vulnerabilities #CISA #KEV #exploited #Oracle #Oracle [\u2026] \n\n[Original post on securityweek.com]", "creation_timestamp": "2026-06-02T12:09:49.146324Z"}, {"uuid": "eb168f2b-f489-4d06-b4e5-b182a4ed27b0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2024-21182", "type": "seen", "source": "https://bsky.app/profile/ahmandonk.bsky.social/post/3mncpbieidt2f", "content": "\ud83d\udcf0 Eksploitasi Aktif Celah Lama: CISA Perintahkan Instansi Pemerintah Tambal Kerentanan Oracle WebLogic Server\n\n\ud83d\udc49 Baca artikel lengkap di sini: https://ahmandonk.com/2026/06/02/cisa-peringatkan-celah-oracle-weblogic-dieksploitasi-aktif/\n\n#bod22-01 #celahKeamananLama #cisa #cve-2024-21182 #ekspl", "creation_timestamp": "2026-06-02T13:30:15.963193Z"}, {"uuid": "46507220-4b4a-4e95-b06a-9f84ea1297b4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21182", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/87005", "content": "\ud83d\udea8 GitHub \u76d1\u63a7\u6d88\u606f\u63d0\u9192\n\n\ud83d\udea8 \u53d1\u73b0\u5173\u952e\u8bcd\uff1a #RCE #CVE #POC\n\n\ud83d\udce6 \u9879\u76ee\u540d\u79f0\uff1a CVE-2024-21182\n\ud83d\udc64 \u9879\u76ee\u4f5c\u8005\uff1a dinosn\n\ud83d\udee0 \u5f00\u53d1\u8bed\u8a00\uff1a Java\n\u2b50 Star\u6570\u91cf\uff1a 1  |  \ud83c\udf74 Fork\u6570\u91cf\uff1a 0\n\ud83d\udcc5 \u66f4\u65b0\u65f6\u95f4\uff1a 2026-06-02 14:20:21\n\n\ud83d\udcdd \u9879\u76ee\u63cf\u8ff0\uff1a\nReproducible Docker lab for CVE-2024-21182 \u2014 Oracle WebLogic T3/IIOP OpaqueReference JNDI injection \u2192 unauthenticated RCE (CVE-2023-21839 patch-bypass family). One-command validate.sh.\n\n\ud83d\udd17 \u70b9\u51fb\u8bbf\u95ee\u9879\u76ee\u5730\u5740", "creation_timestamp": "2026-06-02T15:05:31.000000Z"}, {"uuid": "69ce5be1-e5b4-4090-b847-769497d4f5f3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21182", "type": "seen", "source": "https://bsky.app/profile/infosecbriefly.bsky.social/post/3mndbednnan26", "content": "CISA added CVE-2024-21182 in Oracle WebLogic Server to the KEV Catalog due to evidence of active exploitation, requiring FCEB remediation by June 4, 2026.\n", "creation_timestamp": "2026-06-02T18:53:45.894361Z"}, {"uuid": "522124f2-b6e9-4147-af19-62744d147a04", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21182", "type": "seen", "source": "https://t.me/ctinow/251187", "content": "Oracle WebLogic CVE-2024-21182 Added to KEV Catalog After Active Exploitation\nhttps://ift.tt/JqU2I4S", "creation_timestamp": "2026-06-02T18:44:25.000000Z"}, {"uuid": "de771b24-7c88-4010-ad09-90e48aeffa3b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21182", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mndbzmw6cy2s", "content": "Oracle WebLogic CVE-2024-21182 Added to KEV Catalog After Active Exploitation", "creation_timestamp": "2026-06-02T19:05:40.360342Z"}, {"uuid": "ade3ba86-f149-4192-b1df-ab6b4ce72726", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2024-21182", "type": "seen", "source": "https://bsky.app/profile/aegisbot.bsky.social/post/3mndc33zi4422", "content": "\ud83d\udea8 CISA KEV [CVSS 7.5 \u00b7 HIGH]\nOracle WebLogic CVE-2024-21182 Added to KEV Catalog After Active Exploitation\n\nhttps://thehackernews.com/2026/06/oracle-weblogic-cve-2024-21182-added-to.html\n\n#CISA #KEV #PatchNow", "creation_timestamp": "2026-06-02T19:06:29.168685Z"}, {"uuid": "15a426b1-2b10-4761-ba5c-ffa11926a13d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21182", "type": "seen", "source": "https://bsky.app/profile/pixelsandpulse.bsky.social/post/3mndcwhahqy2t", "content": "CISA just added a two-year-old Oracle WebLogic Server vulnerability (CVE-2024-21182) to its KEV catalog, demanding federal agencies patch by June 4. Its active exploitation shows why robust patch management is crucial for enterprise\u2026\n\nhttps://www.tpp.blog/2qzvwnc\n\n#cybersecurity #cisa #oracle", "creation_timestamp": "2026-06-02T19:21:47.489475Z"}, {"uuid": "fd68cf23-18e0-415b-881e-2936a6ff3360", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21182", "type": "seen", "source": "https://bsky.app/profile/cybersecurity0001.bsky.social/post/3mndemxb46y22", "content": "Oracle WebLogic CVE-2024-21182 Added to KEV Catalog After Active Exploitation", "creation_timestamp": "2026-06-02T19:52:16.686962Z"}, {"uuid": "822426cc-b7e8-4d76-b438-a1a3396a30a2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21182", "type": "seen", "source": "https://bsky.app/profile/hapsis.bsky.social/post/3mndevouzak2z", "content": "Oracle WebLogic CVE-2024-21182 Added to KEV Catalog After Active Exploitation\n\nthehackernews.com/2026/06/orac...\n\n#Cybersecurity #ThreatIntel #Vulnerability", "creation_timestamp": "2026-06-02T19:57:11.916096Z"}, {"uuid": "81c5e2b2-4447-4e8b-9f99-c1c88a4efdff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21182", "type": "seen", "source": "Telegram/0RWgeXgDd8FuhlsxGHTZmZulVERW9VznQ2KUM8It_wSr4u8", "content": "", "creation_timestamp": "2026-06-02T15:00:17.000000Z"}, {"uuid": "eba2bb36-c326-4103-b545-f3dfdc675d41", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21182", "type": "seen", "source": "https://t.me/TengkorakCyberCrewzz/10850", "content": "Oracle WebLogic CVE-2024-21182 Added to KEV Catalog After Active Exploitation \u2013 thehackernews.com\n\nWed, 03 Jun 2026 02:14:42", "creation_timestamp": "2026-06-02T20:03:10.000000Z"}, {"uuid": "f10d8694-4699-42e5-ba69-6c569aa7661e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2024-21182", "type": "seen", "source": "https://bsky.app/profile/breachandbuild.bsky.social/post/3mndkbtniv322", "content": "Critical Oracle WebLogic vulnerability CVE-2024-21182 is now in CISA's KEV Catalog! We covered how unauthenticated attackers are actively seizing control...\n\n#CyberSecurity #BreachAndBuild #OracleWebLogic #CVE202421182 #CISA\n\nhttps://breachandbuild.com/oracle-weblogic-cve-2024-21182-kev-catalog/", "creation_timestamp": "2026-06-02T21:33:25.305046Z"}, {"uuid": "a90b0654-fe47-4695-acf0-d84dacd86729", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21182", "type": "seen", "source": "https://bsky.app/profile/sleepydogtsjp.bsky.social/post/3mndkl3dwok2d", "content": "Oracle WebLogic CVE-2024-21182 Added to KEV Catalog After Active Exploitation\nthehackernews.com/2026/06/orac...", "creation_timestamp": "2026-06-02T21:38:45.626757Z"}, {"uuid": "d86df2ff-863a-4a5a-b587-307113d64c60", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21182", "type": "seen", "source": "https://thehackernews.com/2026/06/oracle-weblogic-cve-2024-21182-added-to.html", "content": "The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a high-severity security flaw impacting Oracle WebLogic Server to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation.\n\nThe vulnerability, CVE-2024-21182 (CVSS score: 7.5), allows an unauthenticated attacker with network access to take control of susceptible servers. It was", "creation_timestamp": "2026-06-02T16:14:42.000000Z"}, {"uuid": "0cde9ee8-5877-43ef-8220-c9247bd9111a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21182", "type": "seen", "source": "https://bsky.app/profile/crustytldr.bsky.social/post/3mndm26rrdl2q", "content": "\ud83d\udd12 Oracle WebLogic CVE-2024-21182 Added to KEV Catalog After Active Exploitation\n\nThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a high-severity sec...\n\nhttps://tinyurl.com/muz64kzt #CyberSecurity #InfoSec #CrustyTLDR", "creation_timestamp": "2026-06-02T22:04:56.138187Z"}, {"uuid": "d8f31a0b-ea5c-4ef3-b81d-355028febf0c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21182", "type": "seen", "source": "https://bsky.app/profile/ninjaowl.ai/post/3mndm5scusj2e", "content": "Oracle WebLogic CVE-2024-21182 Added to KEV Catalog After Active Exploitation #cybersecurity #hacking #news #infosec #security #technology #privacy thehackernews.com/20...", "creation_timestamp": "2026-06-02T22:06:57.715592Z"}, {"uuid": "feecd27f-9e00-4fac-9fcb-3f903ddde3c2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21182", "type": "seen", "source": "https://bsky.app/profile/undercodenews.bsky.social/post/3mndmqhx6752l", "content": "Cybersecurity Flashpoint: Oracle WebLogic Exploit Joins CISA List as AI Turns Browsers into the New Battlefield +\u00a0Video\n\nBreaking Signal in Enterprise Security Landscape The cybersecurity world has once again been jolted by the addition of a critical vulnerability, CVE-2024-21182, to the Known\u2026", "creation_timestamp": "2026-06-02T22:17:24.362908Z"}, {"uuid": "a200c5b4-a68b-44dc-98a5-cce8142bf877", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21182", "type": "seen", "source": "https://bsky.app/profile/bugxhunter.bsky.social/post/3mndskvhuu226", "content": "\ud83d\udc1b Oracle WebLogic Server CVE-2024-21182 Exploitati...\n\n\ud83d\udcdd US federal depa...\n\nhttps://www.csoonline.com/article/4180218/two-year-old-oracle-weblogic-server-vulnerability-is-being-exploited.html\n\n\ud83d\udcf0 Two-year old Oracle WebLogic Server vulnerability is being exploited | CSO Online\n\n#CVE #ZeroDay", "creation_timestamp": "2026-06-03T00:01:39.216898Z"}, {"uuid": "fc85c781-dbe3-4b6c-96db-c8b57f0f9ea5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21182", "type": "seen", "source": "https://bsky.app/profile/securityrss.bsky.social/post/3mndsmtf4ef2n", "content": "CISA has warned of active exploitation of Oracle WebLogic Server vulnerability CVE-2024-21182, added to its KEV catalog on June 1, 2026. This critical flaw allows remote exploitation without authentication, risking unauthorized access to sensitive data and potential full system compromise.", "creation_timestamp": "2026-06-03T00:02:45.085573Z"}, {"uuid": "db6fbf22-a320-4100-8135-76d1f8fe8029", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21182", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3mndttvditzl2", "content": "Oracle: CISA Warns of Two-Year-Old Oracle WebLogic Server Vulnerability Exploited in Attacks Critical Oracle WebLogic Server Vulnerability (CVE-2024-21182) Actively Exploited The U.S. Cybersecurity...\n\n#cyber #Vulnerability\n\nOrigin | Interest | Match", "creation_timestamp": "2026-06-03T00:24:36.989625Z"}, {"uuid": "d3708dde-7c35-4006-95de-abc835f65fd3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21182", "type": "seen", "source": "https://bsky.app/profile/kitafox.bsky.social/post/3mndwf3pgqf2x", "content": "Oracle WebLogic\u306e\u8106\u5f31\u6027CVE-2024-21182\u304c\u3001\u5b9f\u969b\u306e\u653b\u6483\u5f8c\u306bKEV\u30ab\u30bf\u30ed\u30b0\u306b\u8ffd\u52a0\u3055\u308c\u307e\u3057\u305f \n\nOracle WebLogic CVE-2024-21182 Added to KEV Catalog After Active Exploitation  #HackerNews (Jun 2)\n\nthehackernews.com/2026/06/orac...", "creation_timestamp": "2026-06-03T01:09:59.955074Z"}, {"uuid": "0be19341-da06-491b-a5f2-2a492fabd6ef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21182", "type": "exploited", "source": "https://t.me/cibsecurity/89570", "content": "\ud83d\udd8b\ufe0f Oracle WebLogic CVE-2024-21182 Added to KEV Catalog After Active Exploitation \ud83d\udd8b\ufe0f\n\nThe U.S. Cybersecurity and Infrastructure Security Agency CISA on Monday added a highseverity security flaw impacting Oracle WebLogic Server to its Known Exploited Vulnerabilities KEV Catalog, based on evidence of active exploitation.  The vulnerability, CVE202421182 CVSS score 7.5, allows an unauthenticated attacker with network access to take control of susceptible servers. It was.\n\n\ud83d\udcd6 Read more.\n\n\ud83d\udd17 Via \"The Hacker News\"\n\n----------\n\ud83d\udc41\ufe0f Seen on @cibsecurity", "creation_timestamp": "2026-06-03T02:46:32.000000Z"}, {"uuid": "44a8a872-f267-48ee-b367-9adba3ffaaff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21182", "type": "seen", "source": "https://bsky.app/profile/shiojiri.com/post/3mnebywn7gsfo", "content": "2\u5e74\u524d\u306b\u4fee\u6b63\u3055\u308c\u305fOracle\u306e\u8106\u5f31\u6027\u304c\u653b\u6483\u3067\u60aa\u7528\u3055\u308c\u308b \u7c73CISA\u304c\u8b66\u544a\uff08CVE-2024-21182\uff09 | Codebook\uff5cSecurity News https://codebook.machinarecord.com/threatreport/silobreaker-cyber-alert/45906/", "creation_timestamp": "2026-06-03T04:39:00.436837Z"}, {"uuid": "e4f8822c-7332-4e2a-9af7-6475a2e53d73", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21182", "type": "seen", "source": "https://bsky.app/profile/hendryadrian.bsky.social/post/3mnefrjsoti2l", "content": "CISA added Oracle WebLogic CVE-2024-21182 to its KEV Catalog after active exploitation. The flaw allows unauthenticated network attacks that can expose data or server control. #OracleWebLogic #CISA #USA", "creation_timestamp": "2026-06-03T05:45:24.133632Z"}, {"uuid": "361e715a-acd5-4c29-b6cd-3cceee353889", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21182", "type": "seen", "source": "https://t.me/true_secator/8273", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c Oracle WebLogic \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442\u0441\u044f \u0432 \u0440\u0435\u0430\u043b\u044c\u043d\u044b\u0445 \u0443\u0441\u043b\u043e\u0432\u0438\u044f\u0445 \u0431\u0435\u0437 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438 \u0434\u043b\u044f \u0432\u0437\u043b\u043e\u043c\u0430 \u0437\u0430\u0442\u0440\u043e\u043d\u0443\u0442\u044b\u0445 \u0441\u0435\u0440\u0432\u0435\u0440\u043e\u0432.\n\n\u041f\u0440\u0435\u0434\u0443\u043f\u0440\u0435\u0436\u0434\u0435\u043d\u0438\u0435 \u0432\u044b\u043d\u0435\u0441\u043b\u0430 CISA, \u0443\u0432\u0435\u0434\u043e\u043c\u043b\u044f\u044f \u043e\u0440\u0433\u0430\u043d\u0438\u0437\u0430\u0446\u0438\u0438 \u043e \u0442\u043e\u043c, \u0447\u0442\u043e \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432 Oracle WebLogic, \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u043d\u0430\u044f \u043f\u043e\u0447\u0442\u0438 \u0434\u0432\u0430 \u0433\u043e\u0434\u0430 \u043d\u0430\u0437\u0430\u0434, \u0442\u0435\u043f\u0435\u0440\u044c \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442\u0441\u044f \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c\u0438 \u0432 \u0440\u0435\u0430\u043b\u044c\u043d\u044b\u0445 \u0443\u0441\u043b\u043e\u0432\u0438\u044f\u0445.\n\n\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043e\u0442\u0441\u043b\u0435\u0436\u0438\u0432\u0430\u0435\u0442\u0441\u044f \u043a\u0430\u043a CVE-2024-21182 \u0438 \u0431\u044b\u043b\u0430 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0430 Oracle \u0432 Java-\u0441\u0435\u0440\u0432\u0435\u0440\u0435 \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u0439 \u0432 \u0440\u0430\u043c\u043a\u0430\u0445 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u043e\u0442 \u0438\u044e\u043b\u044f 2024 \u0433\u043e\u0434\u0430. \u0412 \u0443\u0432\u0435\u0434\u043e\u043c\u043b\u0435\u043d\u0438\u0438 Oracle \u0443\u043a\u0430\u0437\u0430\u043d\u043e, \u0447\u0442\u043e \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0431\u044b\u043b\u0430 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0430 \u0438 \u0440\u0430\u0441\u043a\u0440\u044b\u0442\u0430 \u043d\u0435\u0437\u0430\u0432\u0438\u0441\u0438\u043c\u043e \u043d\u0435\u0441\u043a\u043e\u043b\u044c\u043a\u0438\u043c\u0438 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u044f\u043c\u0438.\n\n\u0421 \u043c\u043e\u043c\u0435\u043d\u0442\u0430 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 CVE-2024-21182 \u0432 \u043e\u0442\u043a\u0440\u044b\u0442\u043e\u043c \u0434\u043e\u0441\u0442\u0443\u043f\u0435 \u043f\u043e\u044f\u0432\u0438\u043b\u043e\u0441\u044c \u043d\u0435\u0441\u043a\u043e\u043b\u044c\u043a\u043e \u0434\u0435\u043c\u043e\u043d\u0441\u0442\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u044b\u0445 PoC, \u043d\u043e CISA, \u043f\u043e\u0445\u043e\u0436\u0435, \u043f\u0435\u0440\u0432\u043e\u0439 \u043f\u0440\u0435\u0434\u0443\u043f\u0440\u0435\u0434\u0438\u043b\u0430 \u043e \u0435\u0451 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0438 \u0432 \u0440\u0435\u0430\u043b\u044c\u043d\u044b\u0445 \u0443\u0441\u043b\u043e\u0432\u0438\u044f\u0445.\n\n1 \u0438\u044e\u043d\u044f \u0430\u043c\u0435\u0440\u0438\u043a\u0430\u043d\u0441\u043a\u0438\u0439 \u0440\u0435\u0433\u0443\u043b\u044f\u0442\u043e\u0440 \u0434\u043e\u0431\u0430\u0432\u0438\u043b CVE-2024-21182\u00a0\u0432 \u0441\u0432\u043e\u0439 \u043a\u0430\u0442\u0430\u043b\u043e\u0433 \u0438\u0437\u0432\u0435\u0441\u0442\u043d\u044b\u0445 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u0435\u043c\u044b\u0445 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 (KEV).\n\n\u041e\u043d\u0430 \u043c\u043e\u0436\u0435\u0442 \u0431\u044b\u0442\u044c \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0430 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u044b\u043c\u0438, \u043d\u0435\u0430\u0432\u0442\u043e\u0440\u0438\u0437\u043e\u0432\u0430\u043d\u043d\u044b\u043c\u0438 \u0445\u0430\u043a\u0435\u0440\u0430\u043c\u0438 \u0434\u043b\u044f \u043f\u043e\u043b\u043d\u043e\u0439 \u043a\u043e\u043c\u043f\u0440\u043e\u043c\u0435\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u044b\u0445 \u044d\u043a\u0437\u0435\u043c\u043f\u043b\u044f\u0440\u043e\u0432 Oracle WebLogic Server.\n\n\u0423\u0441\u043f\u0435\u0448\u043d\u044b\u0435 \u0430\u0442\u0430\u043a\u0438 \u0441 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435\u043c \u044d\u0442\u043e\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0433\u0443\u0442 \u043f\u0440\u0438\u0432\u0435\u0441\u0442\u0438 \u043a \u043d\u0435\u0441\u0430\u043d\u043a\u0446\u0438\u043e\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u043e\u043c\u0443 \u0434\u043e\u0441\u0442\u0443\u043f\u0443 \u043a \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438 \u0432\u0430\u0436\u043d\u044b\u043c \u0434\u0430\u043d\u043d\u044b\u043c \u0438\u043b\u0438 \u043a \u043f\u043e\u043b\u043d\u043e\u043c\u0443 \u0434\u043e\u0441\u0442\u0443\u043f\u0443 \u043a\u043e \u0432\u0441\u0435\u043c \u0434\u0430\u043d\u043d\u044b\u043c, \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u044b\u043c \u0447\u0435\u0440\u0435\u0437 Oracle WebLogic Server, \u043a\u0430\u043a \u043e\u0442\u043c\u0435\u0447\u0430\u0435\u0442 CISA.\n\n\u041f\u043e \u0432\u0441\u0435\u0439 \u0432\u0438\u0434\u0438\u043c\u043e\u0441\u0442\u0438, \u043d\u0438\u043a\u0430\u043a\u043e\u0439 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438 \u043e\u0431 \u0430\u0442\u0430\u043a\u0430\u0445, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044e\u0449\u0438\u0445 \u044d\u0442\u0443 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c, \u043f\u043e\u043a\u0430 \u043d\u0435\u0442. \u0412 \u0446\u0435\u043b\u043e\u043c, \u0432 \u043a\u0430\u0442\u0430\u043b\u043e\u0433\u0435 KEV CISA\u00a0\u0441\u043e\u0434\u0435\u0440\u0436\u0438\u0442\u0441\u044f \u0435\u0449\u0435 \u043e\u043a\u043e\u043b\u043e \u0434\u0435\u0441\u044f\u0442\u043a\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 WebLogic Server.\n\n\u041f\u0440\u0438\u0447\u0435\u043c \u0431\u043e\u043b\u044c\u0448\u0438\u043d\u0441\u0442\u0432\u043e \u0438\u0437 \u043d\u0438\u0445 \u0438\u043c\u0435\u044e\u0442 CVE, \u043f\u0440\u0438\u0441\u0432\u043e\u0435\u043d\u043d\u044b\u0435 \u0432 2020 \u0433\u043e\u0434\u0443 \u0438\u043b\u0438 \u0440\u0430\u043d\u0435\u0435, \u043d\u043e \u0431\u043e\u043b\u044c\u0448\u0438\u043d\u0441\u0442\u0432\u043e \u0431\u044b\u043b\u0438\u00a0\u0434\u043e\u0431\u0430\u0432\u043b\u0435\u043d\u044b \u0432 \u043a\u0430\u0442\u0430\u043b\u043e\u0433 \u0441\u043f\u0443\u0441\u0442\u044f \u043d\u0435\u0441\u043a\u043e\u043b\u044c\u043a\u043e \u043b\u0435\u0442 \u043f\u043e\u0441\u043b\u0435 \u0442\u043e\u0433\u043e, \u043a\u0430\u043a Oracle \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b\u0430 \u0434\u043b\u044f \u043d\u0438\u0445 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f.", "creation_timestamp": "2026-06-03T12:47:04.000000Z"}, {"uuid": "1838ba34-4811-4843-9a33-3abeb31ca8ed", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21182", "type": "seen", "source": "https://bsky.app/profile/thedailytechfeed.com/post/3mnffkhngct2v", "content": "CISA adds Oracle WebLogic CVE-2024-21182 to KEV Catalog due to active exploitation. Admins urged to patch by June 4, 2026. #CyberSecurity #OracleWebLogic #CISA #VulnerabilityManagement Link: thedailytechfeed.com/cisa-alerts-...", "creation_timestamp": "2026-06-03T15:14:05.803270Z"}, {"uuid": "2d003416-655e-4cba-bbde-ea11a66b8d69", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21182", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3mnfqormz2s2h", "content": "Oracle WebLogic CVE-2024-21182 Added to KEV Catalog After Active Exploitation\n\nThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a high-severity security flaw impacting Oracle WebLogic Server to its Known Exploited Vulnerabilities (KEV) Catalog, base\u2026\n#hackernews #news", "creation_timestamp": "2026-06-03T18:33:21.394256Z"}, {"uuid": "c1e5449b-4bd1-4136-813d-0ed6fe1f14b0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21182", "type": "seen", "source": "https://bsky.app/profile/infosecbriefly.bsky.social/post/3mng3ygihj22f", "content": "CISA added CVE-2024-21182 to the KEV catalog, requiring federal agencies to patch exposed Oracle WebLogic servers by June 4 due to active exploitation.\n", "creation_timestamp": "2026-06-03T21:55:44.608767Z"}, {"uuid": "970e6855-6b2f-44d2-be57-ffc6a186a39b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21182", "type": "seen", "source": "Telegram/1g1KGpo9U31TdBLCxq48sVFw--jXsK0pEdyaoNb3DA-CNg", "content": "", "creation_timestamp": "2026-06-02T21:34:12.000000Z"}, {"uuid": "6e08c79e-63e8-4a8c-a5a6-3d91ce9ab80c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21182", "type": "seen", "source": "https://bsky.app/profile/stechtimes.com/post/3mnhjyfp6bo2y", "content": "\ud83d\udee1\ufe0f CISA WebLogic Warning Turns Oracle Patch Lag Into an Exposure Test\n\nCISA ordered U.S. federal agencies to patch Oracle WebLogic Server systems affected by CVE-2024-21182 after active exploitation was observed.\n\n#Cybersecurity #ThreatIntel\n\nLink card below.", "creation_timestamp": "2026-06-04T11:38:56.186876Z"}, {"uuid": "22246c82-122c-47a0-a4e8-8e631e08a64a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21182", "type": "seen", "source": "https://bsky.app/profile/modat-io.bsky.social/post/3mnhrqpboik2l", "content": "\u26a0\ufe0fCVE-2024-21182: Oracle WebLogic Server unauthenticated access via T3/IIOP now actively exploited & added to CISA KEV. Affects 12.2.1.4.0 & 14.1.1.0.0. Patch immediately or block port 7001. Query: web.headers~\"WebLogic Server\"\u00a0\nmagnify.modat.io", "creation_timestamp": "2026-06-04T13:57:44.329322Z"}, {"uuid": "519094a5-b12b-4971-9b01-831eec310619", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21182", "type": "seen", "source": "https://www.acn.gov.it/portale/w/weblogic-sfruttamento-attivo-in-rete-della-cve-2024-21182", "content": "Rilevato sfruttamento attivo in rete della CVE-2024-21182 \u2013 gi\u00e0 sanata dal vendor \u2013 presente in Oracle WebLogic Server, nota piattaforma per la gestione di applicazioni web e sistemi complessi.", "creation_timestamp": "2026-06-05T04:30:04.000000Z"}, {"uuid": "870d4fef-9f36-44ec-8682-bd9e96d9562d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-21182", "type": "seen", "source": "Telegram/oFANvhI-6gD5N3MdJioXISYRmmtnWIQ07Tw4W0tvnq7rKmo", "content": "", "creation_timestamp": "2026-06-02T21:00:04.000000Z"}]}