New QID for vulnerabilities in Oracle WebLogic Server

Document created by Dave Ferguson Employee on May 11, 2020Last modified by Dave Ferguson Employee on May 11, 2020
Version 2Show Document
  • View in full screen mode

The WebLogic Server product of Oracle Middleware Fusion is widely used as a middle-tier application server to run Java web applications.  Recently, Oracle released their Critical Patch Update for April 2020 that fixed several vulnerabilities in WebLogic Server.  Vulnerable versions of WebLogic Server include 10.3.6.0, 12.1.3.0, 12.2.1.3, and 12.2.1.4.

 

A new detection in Qualys WAS has been released to report when the target web application is running a vulnerable version of WebLogic Server.  To test for this vulnerability, make sure QID 150290 is enabled during your WAS vulnerability scans.  QID 150290 is a severity "4" potential vulnerability.  

 

The CVE IDs covered by this QID include:

 

  • CVE-2020-2883
  • CVE-2020-2869
  • CVE-2020-2766
  • CVE-2020-2884
  • CVE-2020-2801
  • CVE-2020-2867
  • CVE-2020-2811
  • CVE-2020-2798
  • CVE-2020-2963
  • CVE-2020-2828 (applicable only to WebLogic Server 10.3.6.0)
  • CVE-2020-2829 (applicable only to WebLogic Server 10.3.6.0)
  • CVE-2019-16943
  • CVE-2019-17571

 

Note: A Qualys Vulnerability Management (VM) remote scan can also be used to test for this vulnerability (the QID is 87416). 

Attachments

    Outcomes