Vulnerabilities > Oracle > Weblogic Server > Medium

DATE CVE VULNERABILITY TITLE RISK
2022-04-21 CVE-2022-29577 Cross-site Scripting vulnerability in multiple products
OWASP AntiSamy before 1.6.7 allows XSS via HTML tag smuggling on STYLE content with crafted input.
network
low complexity
antisamy-project oracle CWE-79
6.1
6.1
2022-04-19 CVE-2022-21453 Unspecified vulnerability in Oracle Weblogic Server 12.2.1.3.0/12.2.1.4.0/14.1.1.0.0
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Console).
network
low complexity
oracle
6.1
6.1
2022-01-24 CVE-2022-23437 Infinite Loop vulnerability in multiple products
There's a vulnerability within the Apache Xerces Java (XercesJ) XML parser when handling specially crafted XML document payloads.
network
low complexity
apache oracle netapp CWE-835
6.5
6.5
2022-01-19 CVE-2022-21252 Unspecified vulnerability in Oracle Weblogic Server 12.2.1.4.0/14.1.1.0.0
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Samples).
network
low complexity
oracle
6.5
6.5
2022-01-19 CVE-2022-21257 Unspecified vulnerability in Oracle Weblogic Server 12.2.1.4.0/14.1.1.0.0
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Samples).
network
low complexity
oracle
6.1
6.1
2022-01-19 CVE-2022-21258 Unspecified vulnerability in Oracle Weblogic Server 14.1.1.0.0
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Samples).
network
low complexity
oracle
6.1
6.1
2022-01-19 CVE-2022-21259 Unspecified vulnerability in Oracle Weblogic Server 12.2.1.4.0/14.1.1.0.0
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Samples).
network
low complexity
oracle
6.1
6.1
2022-01-19 CVE-2022-21260 Unspecified vulnerability in Oracle Weblogic Server 12.2.1.4.0/14.1.1.0.0
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Samples).
network
low complexity
oracle
6.1
6.1
2022-01-19 CVE-2022-21261 Unspecified vulnerability in Oracle Weblogic Server 12.2.1.4.0/14.1.1.0.0
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Samples).
network
low complexity
oracle
6.1
6.1
2022-01-19 CVE-2022-21262 Unspecified vulnerability in Oracle Weblogic Server 12.2.1.4.0/14.1.1.0.0
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Samples).
network
low complexity
oracle
6.1
6.1