CVE-2019-2729 vulnerability in Oracle Products
Published on June 19, 2019

Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: Web Services). Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0 and 12.2.1.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle WebLogic Server. Successful attacks of this vulnerability can result in takeover of Oracle WebLogic Server. CVSS 3.0 Base Score 9.8 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H).

NVD

Products Associated with CVE-2019-2729

Want to know whenever a new CVE is published for Oracle products? stack.watch will email you.

Oracle Weblogic Server

Oracle Identity Manager

Oracle Peoplesoft Enterprise Peopletools

Oracle Rapid Planning

Oracle Communications Diameter Signaling Router

Oracle Communications Network Integrity

Oracle Hyperion Infrastructure Technology

Oracle Storagetek Tape Analytics Sw Tool

Oracle Tape Library Acsls

Affected Versions

Oracle Corporation WebLogic Server:

Version 10.3.6.0.0 is affected.
Version 12.1.3.0.0 is affected.
Version 12.2.1.3.0 is affected.

Exploit Probability

EPSS

94.36%

Percentile

99.96%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2019-2729 vulnerability in Oracle ProductsPublished on June 19, 2019

Products Associated with CVE-2019-2729

Affected Versions

Exploit Probability

CVE-2019-2729 vulnerability in Oracle Products
Published on June 19, 2019