Oracle WebLogic Remote Code Execution (CVE-2020-14882)

Severity: Critical

Invicti identified the Oracle WebLogic Remote Code Execution (CVE-2020-14882) in the target web server.


The vulnerability allows attackers to execute arbitrary Java code on the target system. The attacker may also be able to execute arbitrary system commands.

Exploit of the vulnerability is known widely and should be addressed as soon as possible.


In order to patch this vulnerability, please install the official patch Oracle made available for supported, vulnerable instances.


Search Vulnerability

Invicti Logo

Dead accurate, fast & easy-to-use Web Application Security Scanner

Get a demo