Oracle WebLogic Server OS Command Injection Flaw Under Active Attack
![Oracle WebLogic Server OS Command Injection Flaw Under Active Attack](https://www.ngtedu.co.in/heenachy/2024/06/Oracle-WebLogic-Server-OS-Command-Injection-Flaw-Under-Active-Attack.png)
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a security flaw impacting the Oracle WebLogic Server to the Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation.
Tracked as CVE-2017-3506 (CVSS score: 7.4), the issue concerns an operating system (OS) command injection vulnerability that could be exploited to obtain unauthorized
The post “Oracle WebLogic Server OS Command Injection Flaw Under Active Attack” appeared first on The Hacker News
Source:The Hacker News – [email protected] (The Hacker News)