Vulnerabilities > Oracle > Weblogic Server > Medium

DATE CVE VULNERABILITY TITLE RISK
2021-01-20 CVE-2021-2033 Unspecified vulnerability in Oracle Weblogic Server
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core Components).
network
low complexity
oracle
4.3
4.3
2021-01-20 CVE-2021-1995 Unspecified vulnerability in Oracle Weblogic Server 10.3.6.0.0/12.1.3.0.0
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Web Services).
network
low complexity
oracle
6.5
6.5
2020-12-02 CVE-2020-13956 Apache HttpClient versions prior to version 4.5.13 and 5.0.3 can misinterpret malformed authority component in request URIs passed to the library as java.net.URI object and pick the wrong target host for request execution.
network
low complexity
apache quarkus oracle netapp
5.3
5.3
2020-10-21 CVE-2020-14757 Unspecified vulnerability in Oracle Weblogic Server 12.2.1.3.0
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Web Services).
network
high complexity
oracle
6.8
6.8
2020-09-19 CVE-2020-5421 In Spring Framework versions 5.2.0 - 5.2.8, 5.1.0 - 5.1.17, 5.0.0 - 5.0.18, 4.3.0 - 4.3.28, and older unsupported versions, the protections against RFD attacks from CVE-2015-5211 may be bypassed depending on the browser used through the use of a jsessionid path parameter.
network
high complexity
vmware oracle netapp
6.5
6.5
2020-07-15 CVE-2020-2966 Unspecified vulnerability in Oracle Weblogic Server
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Console).
network
low complexity
oracle
5.4
5.4
2020-07-15 CVE-2020-14652 Unspecified vulnerability in Oracle Weblogic Server
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core).
network
low complexity
oracle
6.5
6.5
2020-07-15 CVE-2020-14640 Unspecified vulnerability in Oracle Weblogic Server
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Sample apps).
network
low complexity
oracle
6.1
6.1
2020-07-15 CVE-2020-14638 Unspecified vulnerability in Oracle Weblogic Server
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Sample apps).
network
low complexity
oracle
6.1
6.1
2020-07-15 CVE-2020-14637 Unspecified vulnerability in Oracle Weblogic Server
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Sample apps).
network
low complexity
oracle
6.1
6.1