Threat Post

Oracle: Unpatched Versions of WebLogic App Server Under Active Attack

CVE-2020-2883 was patched in Oracle’s April 2020 Critical Patch Update – but proof of concept exploit code was published shortly after. Oracle is urging customers to fast-track a patch for a critical ...
Threat Post

New ‘Sodinokibi’ Ransomware Exploits Critical Oracle WebLogic Flaw

A recently-patched critical flaw in Oracle WebLogic is being actively exploited to peddle a new ransomware variant, which researchers call “Sodinokibi.” A recently-disclosed critical vulnerability in ...
ZDNet

Oracle patches another actively-exploited WebLogic zero-day

Oracle released an out-of-band security update to fix a vulnerability in WebLogic servers that was being actively exploited in the real world to hijack users' systems. Attacks using this vulnerability ...
Dark Reading

Researchers Analyze Oracle WebLogic Flaw Under Attack

Oracle recently urged customers to deploy its April 2020 Critical Patch Update to address CVE-2020-2883, a vulnerability affecting multiple versions of the Oracle WebLogic Server. Both the company and ...
SDxCentral

Oracle updates WebLogic Kubernetes Toolkit with cross-architecture support

Oracle has released a revamped toolkit to make it easier to deploy WebLogic domains to Kubernetes clusters. Version 2.0 of ...
Computerworld

Oracle equips WebLogic, Coherence for cloud use

Oracle has updated some of its middleware and developer products to make them better equipped for private cloud deployments, releasing major updates for the WebLogic application server and Oracle ...