Lucene search
OracleCVELIST:CVE-2019-2649HistoryApr 23, 2019 - 6:16 p.m.
CVE-2019-2649
2019-04-2318:16:42
oracle
www.cve.org
1
Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: WLS - Web Services). Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0 and 12.2.1.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle WebLogic Server. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle WebLogic Server accessible data. CVSS 3.0 Base Score 7.5 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N).
CNA Affected
[
{
"product": "WebLogic Server",
"vendor": "Oracle Corporation",
"versions": [
{
"status": "affected",
"version": "10.3.6.0.0"
},
{
"status": "affected",
"version": "12.1.3.0.0"
},
{
"status": "affected",
"version": "12.2.1.3.0"
}
]
}
]Related
cve
cve
CVE-2019-2649
2019-04-23 19:32:53
prion
prion
Code injection
2019-04-23 19:32:00
nvd
nvd
CVE-2019-2649
2019-04-23 19:32:53
myhack58
myhack58
nessus
nessus
Oracle WebLogic Server Multiple Vulnerabilities (Apr 2019 CPU)
2019-04-18 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - April 2019
2019-04-16 00:00:00