Vulnerability & Exploit Database

Back to search

Oracle WebLogic: Critical Patch Update - October 2017 (CVE-2017-10271)

Severity CVSS Published Added Modified
7 (AV:N/AC:L/Au:N/C:N/I:N/A:P) October 19, 2017 February 09, 2018 February 19, 2018

Available Exploits 


Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: WLS Security). Supported versions that are affected are,, and Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle WebLogic Server. Successful attacks of this vulnerability can result in takeover of Oracle WebLogic Server.

Free Nexpose Download

Discover, prioritize, and remediate security risks today!

 Download now