Weblogic news

CISA has added a high-severity Oracle WebLogic Server vulnerability, CVE-2024-21182, to its Known Exploited Vulnerabilities catalog. The flaw allows unauthenticated attackers with network access to take control of affected servers. Evidence confirms that this vulnerability is being actively exploited in the wild, requiring immediate attention.

CISA has issued an urgent directive for U.S. federal agencies to patch a two-year-old, high-severity vulnerability in Oracle WebLogic Server. The flaw is now being actively exploited in attacks, making it a critical threat for organizations still running unpatched versions of the enterprise software.