The WebLogic Server product of Oracle Middleware Fusion is widely used as a middle-tier application server to run Java web applications. Recently, Oracle released their Critical Patch Update for April 2020 that fixed several vulnerabilities in WebLogic Server. Vulnerable versions of WebLogic Server include 10.3.6.0, 188.8.131.52, 184.108.40.206, and 220.127.116.11.
A new detection in Qualys WAS has been released to report when the target web application is running a vulnerable version of WebLogic Server. To test for this vulnerability, make sure QID 150290 is enabled during your WAS vulnerability scans. QID 150290 is a severity "4" potential vulnerability.
The CVE IDs covered by this QID include:
- CVE-2020-2828 (applicable only to WebLogic Server 10.3.6.0)
- CVE-2020-2829 (applicable only to WebLogic Server 10.3.6.0)
Note: A Qualys Vulnerability Management (VM) remote scan can also be used to test for this vulnerability (the QID is 87416).