CVE-2017-10271 — Oracle Corporation WebLogic Server Remote Code Execution Vulnerability

2022-02-10 • CISA Known Exploited Vulnerability

[event] Oracle Corporation WebLogic Server contains a vulnerability that allows for remote code execution.

> AFFECTED SOFTWARE

Field	Value
Vendor	Oracle
Product	WebLogic Server
CVE ID	CVE-2017-10271
Date Added	2022-02-10
Due Date	2022-08-10
Ransomware Campaign	Known — this vulnerability has been leveraged in ransomware campaigns

Apply updates per vendor instructions.

Due Date: 2022-08-10