WebLogic

CISA Adds TP-Link, Apache Log4j2 and Oracle WebLogic Vulnerabilities To Known Exploited Vulnerabilities Catalog

The Cybersecurity and Infrastructure Security Agency (CISA) has added TP-Link, Apache Log4j2 and Oracle WebLogic vulnerabilities to its Known Exploited Vulnerabilities Catalog.

CISA Adds TP-Link, Apache Log4j2 and Oracle WebLogic Vulnerabilities To Known Exploited Vulnerabilities Catalog Read More »

CISA adds 12 vulnerabilities to Known Exploited Vulnerabilities Catalog

The Cybersecurity and Infrastructure Security Agency (CISA) has added 12 vulnerabilities to its Known Exploited Vulnerabilities Catalog, to include Apple, Chrome, Android OS, D-Link (5), QNAP NAS, MikroTik, Oracle WebLogic, FortiOS and FortiADC flaws.

CISA adds 12 vulnerabilities to Known Exploited Vulnerabilities Catalog Read More »

Pro-Ocean cryptojacking malware targets cloud applications

A new Pro-Ocean cryptojacking malware targets popular cloud applications including ApacheMQ, Oracle Weblogic and Redis. The malware contains four modules that execute to hide, mine cryptocurrency, watchdog and infect systems.

Pro-Ocean cryptojacking malware targets cloud applications Read More »

Alert: Weblogic vulnerability exploited in the wild (apply April CPUs without delay)

Oracle released a new warning that a previously patched Weblogic vulnerability CVE-2020-2883 is being exploited in the wild. The company further urged organizations should apply April CPUs without delay.

Alert: Weblogic vulnerability exploited in the wild (apply April CPUs without delay) Read More »

The top 20 vulnerabilities to patch now (that are most under attack)

Security firm Verint analyzed the top 20 vulnerabilities to patch now that are under active attack and exploited by cyber attack groups worldwide. The report is aimed at assisting security teams in prioritizing and enhancing their organization’s patch management efforts.

The top 20 vulnerabilities to patch now (that are most under attack) Read More »

Oracle patches Critical WebLogic vulnerability exploited in the wild (CVE-2019-2729)

Oracle has released a patch for a critical vulnerability CVE-2019-2729 in Oracle WebLogic Server, exploited in the wild. The company also warns bad actors can remotely exploit the flaw without a username and password.

Oracle patches Critical WebLogic vulnerability exploited in the wild (CVE-2019-2729) Read More »