Description
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core). Supported versions that are affected are 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via T3, IIOP to compromise Oracle WebLogic Server. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle WebLogic Server accessible data. CVSS 3.1 Base Score 7.5 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N).
Exploits (8)
nomisec
WORKING POC
241 stars
by DXask88MA · remote
https://github.com/DXask88MA/Weblogic-CVE-2023-21839
metasploit
WORKING POC
EXCELLENT
by 4ra1n, 14m3ta7k, Grant Willcox · rubypoc
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/iiop/cve_2023_21839_weblogic_rce.rb
Nuclei Templates (1)
Oracle WebLogic Server - Unauthorized Access
HIGHVERIFIEDby daffainfo
Shodan:
product:"oracle weblogic"
References (3)
Core 3
Core References
Exploit, Third Party Advisory, VDB Entry
http://packetstormsecurity.com/files/172882/Oracle-Weblogic-PreAuth-Remote-Command-Execution.html
US Government Resource
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-21839
Patch, Vendor Advisory vendor-advisory
https://www.oracle.com/security-alerts/cpujan2023.html
Scores
CVSS v3
7.5
EPSS
0.9405
EPSS Percentile
99.9%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
CISA SSVC
Vulnrichment
Exploitation
active
Automatable
yes
Technical Impact
partial
Details
CISA KEV
2023-05-01
VulnCheck KEV
2023-05-01
InTheWild.io
2023-05-01
ENISA EUVD
EUVD-2023-26005
CWE
CWE-502
CWE-306
Status
published
Products (3)
oracle/weblogic_server
12.2.1.3.0
oracle/weblogic_server
12.2.1.4.0
oracle/weblogic_server
14.1.1.0.0
Published
Jan 18, 2023
KEV Added
May 01, 2023
Tracked Since
Feb 18, 2026