CVE-2019-2725

Summary

CVE-2019-2725 is a serious vulnerability affecting Oracle WebLogic Server, a component of Oracle Fusion Middleware. Versions 10.3.6.0.0 and 12.1.3.0.0 are susceptible to this easily exploitable issue. An unauthenticated attacker with network access via HTTP can potentially take over the Oracle WebLogic Server. The consequences of successful exploitation include loss of confidentiality, integrity, and availability. The CVSS Base Score stands at 9.8. The attack vector involves no authentication (AV:N), a low attack complexity (AC:L), and no user interaction (UI:N). The severity levels for Confidentiality, Integrity, and Availability are all high (S:U/C:H/I:H/A:H).

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.