Weblogic Frameworkproject Weblogic Framework
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Weblogic Frameworkproject Weblogic Framework.
By the Year
In 2026 there have been 0 vulnerabilities in Weblogic Frameworkproject Weblogic Framework. Weblogic Framework did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 0 | 0.00 |
| 2024 | 0 | 0.00 |
| 2023 | 1 | 9.80 |
It may take a day or so for new Weblogic Framework vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Weblogic Frameworkproject Weblogic Framework Security Vulnerabilities
Deserialization RCE in weblogic-framework <0.2.4
CVE-2023-40571
9.8 - Critical
- August 25, 2023
weblogic-framework is a tool for detecting weblogic vulnerabilities. Versions 0.2.3 and prior do not verify the returned data packets, and there is a deserialization vulnerability which may lead to remote code execution. When weblogic-framework gets the command echo, it directly deserializes the data returned by the server without verifying it. At the same time, the classloader loads a lot of deserialization calls. In this case, the malicious serialized data returned by the server will cause remote code execution. Version 0.2.4 contains a patch for this issue.
Marshaling, Unmarshaling
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Weblogic Frameworkproject Weblogic Framework or by Weblogic Frameworkproject? Click the Watch button to subscribe.
