Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium

Web Server

WebLogic

Oracle WebLogic Server is a Java EE application server currently developed by Oracle Corporation. Oracle acquired WebLogic Server when it purchased BEA Systems in 2008.

Official Site:

https://www.oracle.com/middleware/technologies/weblogic.html

Severity Summary:

Critical: 78 High: 88 Medium: 123 Low: 4
Reference
Title
Severity
CVE-2020-11111
WebLogic Deserialization of Untrusted Data Vulnerability
High
CVE-2020-11112
WebLogic Deserialization of Untrusted Data Vulnerability
High
CVE-2020-11619
WebLogic Deserialization of Untrusted Data Vulnerability
High
CVE-2022-21292
WebLogic Vulnerability
High
CVE-2021-3450
WebLogic Improper Certificate Validation Vulnerability
High
CVE-2022-21371
WebLogic Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
High
CVE-2021-35620
WebLogic Vulnerability
High
CVE-2021-2376
WebLogic Vulnerability
High
CVE-2023-21842
WebLogic Vulnerability
High
CVE-2020-14820
WebLogic Vulnerability
High
CVE-2020-2967
WebLogic Vulnerability
High
CVE-2021-2109
WebLogic Vulnerability
High
CVE-2022-23302
WebLogic Deserialization of Untrusted Data Vulnerability
High
CVE-2021-2157
WebLogic Vulnerability
High
CVE-2022-23307
WebLogic Deserialization of Untrusted Data Vulnerability
High
CVE-2023-21839
WebLogic Vulnerability
High
CVE-2023-21837
WebLogic Vulnerability
High
CVE-2020-28491
WebLogic Allocation of Resources Without Limits or Throttling Vulnerability
High
CVE-2020-5398
WebLogic Download of Code Without Integrity Check Vulnerability
High
CVE-2008-2579
WebLogic Vulnerability
High
CVE-2020-14639
WebLogic Vulnerability
High
CVE-2020-36518
WebLogic Out-of-bounds Write Vulnerability
High
CVE-2020-10673
WebLogic Other Vulnerability
High
CVE-2016-0573
WebLogic Vulnerability
High
CVE-2020-11620
WebLogic Deserialization of Untrusted Data Vulnerability
High
CVE-2024-20927
WebLogic Vulnerability
High
CVE-2018-11040
WebLogic Inclusion of Functionality from Untrusted Control Sphere Vulnerability
High
CVE-2018-2935
WebLogic Vulnerability
High
CVE-2024-21260
WebLogic Vulnerability
High
CVE-2023-21979
WebLogic Vulnerability
High