Oracle patches severe flaw in WebLogic Server that could be exploited 'without the need for a username and password'

Nov 3, 2020 04:00 pm Cyber Security 335
Oracle patches severe flaw in WebLogic Server that could be exploited 'without the need for a username and password'

Oracle has released an emergency patch after a security vulnerability was revealed in its WebLogic middleware last week.


The security alert addresses CVE-2020-14750, a remote code execution vulnerability in Oracle WebLogic Server.


"This vulnerability is related to CVE-2020-14882, which was addressed in the October 2020 Critical Patch Update. It is remotely exploitable without authentication, i.e. may be exploited over a network without the need for a username and password," Oracle said in a security alert.


"Due to the severity of this vulnerability and the publication of exploit code on various sites, Oracle strongly recommends that customers apply the updates provided by this Security Alert as soon as possible."


If you haven't patched WebLogic server ..

Support the originator by clicking the read the rest link below.

oracle patches severe weblogic server could exploited without username password
Read The Rest from the original source
go.theregister.com

Related News

Be in Touch

All Rights Reserved #1 Source for Cyber Security News, Reports and Threat Intelligence
Powered By The Internet!!!!