CVE-2021-2376 – Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component …

21 July 2021

Vuln ID: CVE-2021-2376

Published: 2021-07-21 15:15:35Z

Description: Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Web Services). Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via T3, IIOP to compromise Oracle WebLogic Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle WebLogic Server. CVSS 3.1 Base Score 7.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H).

Source: NVD.NIST.GOV

Date:

21 July 2021

Categorie(s):

NVD

Tag(s):

NVD

The escalating battle for data protection in a hybrid world: Exploring key data protection trends24 April 2024
Meta opens its mixed-reality Horizon OS to other headset makers24 April 2024
Management company settles for $18.4M after nuclear weapons plant staff fudged their timesheets24 April 2024
Securing millions of developers through 2FA24 April 2024
South Korean defense firms subjected to North Korean APT attacks24 April 2024