Monday, February 22, 15:09
Home security Oracle WebLogic: Critical vulnerability used by hackers

Oracle WebLogic: Critical vulnerability used by hackers

According to new reports from experts security, cybercriminals have begun to exploit a critical vulnerability on the Oracle WebLogic server. Vulnerability is known as CVE-2020-14882.

Oracle WebLogic

The hackers scan the internet to detect servers that are running Oracle WebLogic versions, vulnerable to this error.

CVE-2020-14882, discovered by the security researcher Voidfyoo by Chaitin Security Research Lab, can be used by unauthorized users. Attackers can take control of one systemic by sending a simple HTTP GET request.

Η vulnerability has received a score of 9,8 out of 10 on the vulnerability scale. However, Oracle has already taken care of this error with Critical Patch Update (CPU) released this month.

The affected versions of Oracle WebLogic Server are: 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.

Security researchers from SANS Technology Institute they created honeypots which allowed them to see a series of attacks, exploiting this vulnerability. The attacks started shortly after the exploit code of the error was published.

The researchers observed that attacks targeting honeypots came from the following IP addresses:

  • 114.243.211.182 (China)
  • 139.162.33.228 (USA)
  • 185.225.19.240 (Moldova)
  • 84.17.37.239 (Hong Kong)

According to SANS experts, the exploit used in the attacks appears to be based on code published by researcher Jang.

"These exploitation efforts are currently trying to verify if the system is vulnerable", Say the researchers of the SANS Technology Institute in a post.

SANS Institute warns ISPs using IP addresses involved in attacks.

According to experts, a search on Spyse engine, for vulnerable Oracle WebLogic servers, brought at least 3,000 results.

Oracle WebLogic servers administrators should update them immediately systems to fix the CVE-2020-14882 vulnerability and stay safe.

Source: Security Affairs

LEAVE ANSWER

Please enter your comment!
Please enter your name here

Digital Fortress
Digital Fortresshttps://www.secnews.gr
Pursue Your Dreams & Live!

LIVE NEWS

Underwriters Laboratories (UL) was attacked by ransomware

UL LLC, known as Underwriters Laboratories, suffered a ransomware attack in which its servers were encrypted and forced to close ...

An image of Apple's third generation AirPods leaked

An image claiming to depict Apple's third-generation AirPods has leaked to the internet. The image was announced by 52audio. To her...

Kroger: Data breach exposes employee data

Giant supermarket chain Kroger suffered data breach after breaching a service used to transfer files securely ...

New Chrome firewall for iOS locks Incognito tabs with Face ID

Google Chrome for iOS gets a new privacy feature that allows users to lock open Incognito tabs and ...

Microsoft Outlook for Windows: You can send emails from aliases

Microsoft adds support for sending emails via alias email addresses (also known as aliases or proxy addresses) from email ...

Scientists can communicate with people who… dream!

Scientists have found a way to communicate in real time with people who are asleep and in a REM cycle dreaming. A new research ...

30.000 Macs have been infected with the new Silver Sparrow malware

Security researchers have identified a new malware that targets Mac devices and has infected nearly 30.000 systems. The malware called Silver ...

Clubhouse: Conversations breached - Privacy concerns

About a week after the announcement of the invitation-only chatroom application Clubhouse regarding the taking of security measures for data protection ...

Lakehead University: Cyber ​​attack affects computers and services

Canadian research at Lakehead University suffered a cyber attack that forced it to cut off access to its servers last week. The services ...

How do you know how much internet speed you really need?

If you have recently moved or are just doing a market research, it is often difficult to decide which internet service provider to use ...