2021-01-02 04:56:15 +00:00
id : CVE-2020-2551
2020-10-01 06:10:28 +00:00
info :
2022-11-29 05:43:35 +00:00
name : Oracle WebLogic Server - Remote Code Execution
2020-10-01 06:10:28 +00:00
author : dwisiswant0
2020-10-01 06:11:28 +00:00
severity : critical
2022-05-26 18:35:42 +00:00
description : |
Oracle WebLogic Server (Oracle Fusion Middleware (component : WLS Core Components) is susceptible to a remote code execution vulnerability. Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0, 2.2.1.3.0 and 12.2.1.4.0. This easily exploitable vulnerability could allow unauthenticated attackers with network access via IIOP to compromise Oracle WebLogic Server.
2023-09-27 15:51:13 +00:00
impact : |
Successful exploitation of this vulnerability could allow an attacker to execute arbitrary code on the affected system.
2023-09-06 12:22:36 +00:00
remediation : |
Apply the latest security patches provided by Oracle to mitigate this vulnerability.
2022-03-29 10:33:49 +00:00
reference :
- https://github.com/hktalent/CVE-2020-2551
- https://nvd.nist.gov/vuln/detail/CVE-2020-2551
2022-05-17 09:18:12 +00:00
- https://www.oracle.com/security-alerts/cpujan2020.html
2024-05-31 19:23:20 +00:00
- https://github.com/neilzhang1/Chinese-Charts
- https://github.com/pjgmonteiro/Pentest-tools
2021-09-10 11:26:40 +00:00
classification :
cvss-metrics : CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
2022-04-22 10:38:41 +00:00
cvss-score : 9.8
2021-09-10 11:26:40 +00:00
cve-id : CVE-2020-2551
2024-05-31 19:23:20 +00:00
epss-score : 0.97537
epss-percentile : 0.99993
2023-09-06 12:22:36 +00:00
cpe : cpe:2.3:a:oracle:weblogic_server:10.3.6.0.0:*:*:*:*:*:*:*
2023-04-28 08:11:21 +00:00
metadata :
max-request : 1
2023-07-11 19:49:27 +00:00
vendor : oracle
product : weblogic_server
2024-06-07 10:04:29 +00:00
shodan-query :
- http.title:"oracle peoplesoft sign-in"
- product:"oracle weblogic"
2024-05-31 19:23:20 +00:00
fofa-query : title="oracle peoplesoft sign-in"
google-query : intitle:"oracle peoplesoft sign-in"
2024-01-14 09:21:50 +00:00
tags : cve2020,cve,oracle,weblogic,rce,unauth,kev
2020-10-01 06:10:28 +00:00
2023-04-27 04:28:59 +00:00
http :
2020-10-01 06:10:28 +00:00
- method : GET
path :
- "{{BaseURL}}/console/login/LoginForm.jsp"
2021-09-12 13:01:46 +00:00
2020-10-01 06:10:28 +00:00
matchers-condition : and
matchers :
- type : word
2023-07-11 19:49:27 +00:00
part : body
2020-10-01 06:10:28 +00:00
words :
- "10.3.6.0"
- "12.1.3.0"
- "12.2.1.3"
- "12.2.1.4"
condition : or
2021-09-12 13:01:46 +00:00
- type : word
2023-07-11 19:49:27 +00:00
part : body
2021-09-12 13:01:46 +00:00
words :
- "WebLogic"
2020-10-01 06:10:28 +00:00
- type : status
status :
- 200
2024-06-08 16:02:17 +00:00
# digest: 4a0a0047304502207e50b3ed9b29a0f0d8605b097970e019fd2100d1d0e91bf8e365492902e9eebd022100d65f279db6a7c16f47e45df961647a5cef50a390314f103ec019198b745c9136:922c64590222798bb761d5b6d8e72950