Collaborate Disseminate
The remote code-execution flaw (CVE-2020-14750) is low-complexity and requires no user interaction to exploit. Continue reading Oracle Rushes Emergency Fix for Critical WebLogic Server Flaw
CVE-2020-2883 was patched in Oracle’s April 2020 Critical Patch Update – but proof of concept exploit code was published shortly after. Continue reading Oracle: Unpatched Versions of WebLogic App Server Under Active Attack
Oracle is urging users to update after a critical WebLogic Server Flaw was found being actively exploited in the wild. Continue reading Oracle Warns of New Actively-Exploited WebLogic Flaw
Researchers are urging Oracle WebLogic users to update quickly – after new Muhstik botnet samples started targeting a critical flaw in the servers. Continue reading Muhstik Botnet Variant Targets Just-Patched Oracle WebLogic Flaw
A recently-patched critical flaw in Oracle WebLogic is being actively exploited to peddle a new ransomware variant, which researchers call “Sodinokibi.” Continue reading New ‘Sodinokibi’ Ransomware Exploits Critical Oracle WebLogic Flaw