CVE-2019-2725
Oracle WebLogic Server, Injection
CVSS
—
No CVSS
EPSS
100.0%
p100
KEV
YES
Jan 10, 2022
Exploit Today
80
0-100
Published: — · Last modified: —
100.0%EPSS · 30 days100.0%
2026-06-302026-07-16
Product
Oracle / WebLogic Server
Vulnerability
Oracle WebLogic Server, Injection
Added to KEV
Jan 10, 2022
Remediate by
Jul 10, 2022
Known ransomware use
Yes
Summary description
Injection vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: Web Services).
Required action
Apply updates per vendor instructions.
Notes
https://nvd.nist.gov/vuln/detail/CVE-2019-2725
CVECVSSEPSSKEVRExploitTitleMod.
CVE-2020-14882—100.0%
KEV—80Oracle WebLogic Server Remote Code Execution Vulnerability—CVE-2017-10271—100.0%
KEV—80Oracle Corporation WebLogic Server Remote Code Execution Vulnerability—CVE-2023-21839—100.0%
KEV—80Oracle WebLogic Server Unspecified Vulnerability—CVE-2020-14750—99.9%
KEV—80Oracle WebLogic Server Remote Code Execution Vulnerability—CVE-2018-2628—99.9%
KEV—80Oracle WebLogic Server Unspecified Vulnerability—CVE-2020-14883—99.9%
KEV—80Oracle WebLogic Server Unspecified Vulnerability—