CVE-2018-2628
Oracle WebLogic Server Unspecified Vulnerability
CVSS
—
Sin CVSS
EPSS
99.4%
p100
KEV
SÍ
8 sept 2022
Exploit Today
80
0-100
Publicado: — · Última mod.: —
99.4%EPSS · 30 días99.4%
2026-06-302026-07-16
Producto
Oracle / WebLogic Server
Vulnerabilidad
Oracle WebLogic Server Unspecified Vulnerability
Añadido a KEV
8 sept 2022
Remediar antes de
29 sept 2022
Uso conocido en ransomware
No
Descripción resumida
Oracle WebLogic Server contains an unspecified vulnerability which can allow an unauthenticated attacker with T3 network access to compromise the server.
Acción requerida
Apply updates per vendor instructions.
Notas
https://www.oracle.com/security-alerts/cpuapr2018.html; https://nvd.nist.gov/vuln/detail/CVE-2018-2628
CVECVSSEPSSKEVRExplotTítuloVis.
CVE-2020-14882—100.0%
KEV—80Oracle WebLogic Server Remote Code Execution Vulnerability—CVE-2017-10271—100.0%
KEV—80Oracle Corporation WebLogic Server Remote Code Execution Vulnerability—CVE-2019-2725—100.0%
KEV—80Oracle WebLogic Server, Injection—CVE-2023-21839—100.0%
KEV—80Oracle WebLogic Server Unspecified Vulnerability—CVE-2020-14750—99.9%
KEV—80Oracle WebLogic Server Remote Code Execution Vulnerability—CVE-2020-14883—99.9%
KEV—80Oracle WebLogic Server Unspecified Vulnerability—