WebLogic is a platform for running applications at enterprise scale, and is often present at financial services providers, e-commerce operations, and other business-critical systems.

Over the past year and a half, Oracle WebLogic servers have been targeted incessantly, especially by criminal groups engaged in crypto-mining operations. CVE-2017-10271, above all, has remained ...

BEA has announced the completion and delivery of WebLogic Platform 9.2 (Server, Portal, and Integration) that are designed to provide a unified foundation for BEA's SOA 360 platform. Kodo 4.1, Worksho ...

Attackers are exploiting a recently disclosed WebLogic vulnerability to install a new ransomware called Sodinokibi. As this vulnerability is trivial to exploit, it is important that server admins ...

Oracle WebLogic servers continue to be hard hit with exploits. In May 2020, Oracle urged customers to fast-track a patch for a critical flaw in its WebLogic Server under active attack.

WebLogic zero-day has now received a patch According to a report Schultz's team published today, attackers exploited CVE-2019-2725, a zero-day in WebLogic 's WLS9_ASYNC and WLS-WSAT components.

Threat actors have started to hunt for servers running Oracle WebLogic instances vulnerable to a critical flaw that allows taking control of the system with little effort and no authentication.