Threat Post

Oracle: Unpatched Versions of WebLogic App Server Under Active Attack

CVE-2020-2883 was patched in Oracle’s April 2020 Critical Patch Update – but proof of concept exploit code was published shortly after. Oracle is urging customers to fast-track a patch for a critical ...
InfoWorld

Oracle hit with patent lawsuit over WebLogic Server

Oracle is finding itself caught up in another Java-related patent lawsuit, but this time it’s the one getting sued. Java middleware vendor Thought filed suit against Oracle on Oct. 31, claiming that ...
Computer Weekly

Cyber criminals exploit Oracle WebLogic flaw

A cyber criminal campaign is deploying Monero cryptocurrency miners on hundreds of victims’ machines by exploiting a flaw in unpatched versions of Oracle’s Fusion Middleware, security researchers have ...
CSOonline

Researchers warn of unpatched vulnerability in Oracle WebLogic Server

Several security companies have detected scans over the past week that look for Oracle WebLogic servers vulnerable to a flaw that hasn’t yet been patched, possibly in preparation for malicious attacks ...