Oracle WebLogic Server Deserialization CVE-2019-2729 Remote Code Execution Vulnerability

Bugtraq ID: 108822
Class: Serialization Error
CVE: CVE-2019-2729
Remote: Yes
Local: No
Published: Jun 18 2019 12:00AM
Updated: Jun 18 2019 12:00AM
Credit: Badcode of Knownsec 404 Team, Fangrun Li of Creditease Security Team, Foren Lim, Lucifaer, orich1 of CUIT D0g3 Secure Team,Sukaralin, WenHui Wang of State Grid, Ye Zhipeng of Qianxin Yunying Labs, Yuxuan Chen, Zhao Chang of Venustech ADLab, and Zhiyi Zhang
Vulnerable: Oracle Weblogic Server 12.2.1.3.0
Oracle Weblogic Server 12.1.3.0.0
Oracle Weblogic Server 10.3.6.0.0
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus