CVE-2020-2801

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core). Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via IIOP, T3 to compromise Oracle WebLogic Server. Successful attacks of this vulnerability can result in takeover of Oracle WebLogic Server. Note: The patch for this issue will address the vulnerability only if the WLS instance is using JDK 1.7.0_191 or later, or JDK 1.8.0_181 or later. CVSS 3.0 Base Score 9.8 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H).
References
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:a:oracle:weblogic_server:10.3.6.0.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:weblogic_server:12.1.3.0.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:weblogic_server:12.2.1.3.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0:*:*:*:*:*:*:*
OR cpe:2.3:a:oracle:jdk:1.7.0:update191_b31:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update191_b32:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update201_b31:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update211_b31:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update211_b32:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update221_b31:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update221_b32:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update221_b34:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update221_b35:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update231_b32:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update241_b31:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update271_b31:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update281:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update281_b32:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update281_b33:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update291_b31:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update291_b32:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update301_b31:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update311_b31:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update321_b31:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update341:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update341_b31:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update343_b31:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update51_b31:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update51_b32:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update51_b33:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update55:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update55_b31:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update55_b32:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update55_b33:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update55_b35:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update60_b32:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update60_b33:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update65:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update65_b33:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update67_b31:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update67_b34:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update72_b31:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update72_b32:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update72_b33:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update76_b32:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update76_b33:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update76_b34:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update76_b35:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update76_b36:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update76_b37:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update76_b38:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update79:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update80_b33:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update80_b35:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update85_b31:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update85_b33:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update85_b34:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update91_b17:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update91_b32:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update91_b33:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update95_b13:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update95_b31:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update95_b32:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update97_b31:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update97_b32:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update97_b33:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update99_b31:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update6:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update5:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update7:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update2:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update9:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update25:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update21:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update3:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update4:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update51:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update45_b34:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update45_b33:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update45_b32:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update45_b31:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update45:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update40:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update25_b35:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update25_b34:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update25_b33:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update21_b31:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update9_b32:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update9_b31:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update7_b32:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update241:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update191:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update201:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update211:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update221:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update231:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update251:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update60:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update67:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update71:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update72:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update75:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update271:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update80:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update76:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update95:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update91:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update97:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update85:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update99:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update301:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update291:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update261:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update331:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update321:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.7.0:update343:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.8.0:update345:*:*:enterprise_performance_pack:*:*:*
cpe:2.3:a:oracle:jdk:1.8.0:update341:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.8.0:update311:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.8.0:update321:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.8.0:update251:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.8.0:update281:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.8.0:update333:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.8.0:update261:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.8.0:update291:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.8.0:update181:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.8.0:update182:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.8.0:update191:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.8.0:update192:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.8.0:update20:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.8.0:update201:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.8.0:update202:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.8.0:update211:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.8.0:update212:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.8.0:update221:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.8.0:update241:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.8.0:update25:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.8.0:update40:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.8.0:update45:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.8.0:update5:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.8.0:update51:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.8.0:update6:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.8.0:update60:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.8.0:update65:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.8.0:update66:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.8.0:update71:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.8.0:update72:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.8.0:update73:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.8.0:update74:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.8.0:update77:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.8.0:update91:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.8.0:update92:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.8.0:update231:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.8.0:update252:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.8.0:update271:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.8.0:update301:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.8.0:update31:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.8.0:update331:*:*:*:*:*:*

Information

Published : 2020-04-15 07:15

Updated : 2023-02-09 07:49


NVD link : CVE-2020-2801

Mitre link : CVE-2020-2801


JSON object : View

Advertisement

dedicated server usa

Products Affected

oracle

  • jdk
  • weblogic_server