← volver
CVE-2017-3248

CVE-2017-3248

EPSS 97.3%
Vexday Risk Score
60Atención
Decisión SSVC (CISA)
Attend
PoC disponible → seguir de cerca
CVSS EPSS 97.3%KEV nãoPoC públicaNuclei Metasploit simPatch
Ciclo de vida
25 ene 2017Exploit Metasploit disponible
27 ene 2017Publicada en NVD
07 jul 2018PoC pública
Recomendación: Planificar corrección próxima — ya existe PoC pública.
Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: Core Components). Supported versions that are affected are 10.3.6.0, 12.1.3.0, 12.2.1.0 and 12.2.1.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via T3 to compromise Oracle WebLogic Server. Successful attacks of this vulnerability can result in takeover of Oracle WebLogic Server. CVSS v3.0 Base Score 9.8 (Confidentiality, Integrity and Availability impacts).
Productos afectados
Oracle · WebLogic Server
PoCs públicas encontradas6
githubgithub.com/0xn0ne/weblogicScanner2071githubgithub.com/ianxtianxt/CVE-2017-32480githubgithub.com/BabyTeam1024/CVE-2017-32480cve_referencepacketstormsecurity.com/files/152357/Oracle-Weblogic-Server-Deserialization-RMI-UnicastRef-Remote-Code-Execution.htmlno verificadocve_referencewww.exploit-db.com/exploits/44998/no verificadoexploitdbwww.exploit-db.com/exploits/44998no verificado
⚠ Recursos públicos, para evaluar la exposición de sistemas que controlas o estás autorizado a probar. Prueba solo con autorización.

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://packetstormsecurity.com/files/152357/Oracle-Weblogic-Server-Deserialization-RMI-UnicastRef-Remote-Code-Execution.htmlhttps://www.exploit-db.com/exploits/44998/https://www.tenable.com/security/research/tra-2017-07https://www.vicarius.io/vsociety/posts/cve-2017-3248-detect-centos-weblogic-rcehttps://www.vicarius.io/vsociety/posts/cve-2017-3248-mitigate-centos-weblogic-rcehttp://www.oracle.com/technetwork/security-advisory/cpujan2017-2881727.htmlhttp://www.securityfocus.com/bid/95465http://www.securitytracker.com/id/1037632