What vulnerability is being actively exploited in Oracle WebLogic Server?

CVE-2020-2883, a vulnerability with a CVSS score of 9.8, which can be exploited by unauthenticated attackers with network access via IIOP or T3 protocols.

When must FCEB agencies apply patches?

Federal Civilian Executive Branch agencies must apply patches by January 28, 2025.

What action should users take?

Users should update their Oracle WebLogic servers as soon as possible.

Attack

CISA warns of critical Oracle flaw actively exploited

Q: When was this vulnerability first identified?

Oracle initially warned about attempted exploitation of this vulnerability in April 2020.

published: Jan. 7, 2025

Take action: If you are running Oracle WebLogic and it's not patched since 2020, you are a ripe target for hackers. Even if you had all the arguments to postpone patching, consider them moot. Patch, because you will be hacked.

Learn More

CISA reprots of an actively exploited vulnerability in Oracle WebLogic Server product. Federal Civilian Executive Branch (FCEB) agencies must apply necessary patches by January 28, 2025.

Vulnerability summary

CVE-2020-2883 (CVSS score 9.8) - Exploitable by unauthenticated attackers with network access via IIOP or T3 protocols.

Oracle had previously warned about attempted exploitation of this vulnerability in April 2020. Specific details about exploitation attempts, threat actors, and their targets are not disclosed. Users should update their Oracle WebLogic servers ASAP.

CISA warns of critical Oracle flaw actively exploited

Read More
CISA warns of active exploitation of critical PaperCut …
Active exploitation of critical SAP flaw CVE-2017-12637 reported …
CISA issues alert on active exploits of just …
China related espionage group UNC3886 exploits end-of-life Juniper …
Ivanti Patches Critical Zero-Day RCE Flaws in EPMM