CISA Flags 2-Year-Old Oracle WebLogic Vulnerability as Actively Exploited

CISA added Oracle WebLogic flaw CVE-2024-21182 to its KEV catalog, giving federal agencies until June 4 to patch exposed servers.
Network World

Oracle looking at emergency patch for WebLogic

Oracle is departing from its regular quarterly patch schedule to fix a severe vulnerability in its popular WebLogic application servers. The problem lies in an Apache plug-in for WebLogic and is rated ...
CSOonline

Two-year old Oracle WebLogic Server vulnerability is being exploited

Its inclusion in the US CISA catalog of known exploited vulnerabilities is a warning to admins that patching is needed now. US federal government departments have been given until Thursday to patch a ...
Morning Overview on MSN

A 9.8-rated Oracle flaw let hackers seize servers for two weeks before any patch existed

Organizations running Oracle WebLogic Server faced active attacks for roughly two weeks before any official fix arrived, ...