Vulnetix
Try Vulnetix Request Demo
CVE-2021-2033 PUBLISHED CVSS 4.300000190734863 MEDIUM

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core Components). Supported versions that are affected are 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle WebLogic Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle WebLogic Server. CVSS 3.1 Base Score 4.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L).

EPSS 0.31% · 54.3th percentile

Risk Scores

CVSS v3.1
4.300000190734863
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
EPSS Score
0.31%
54.3th percentile

Affected Products

VendorProductVersions
oracleweblogic_server14.1.1.0.0, 12.1.3.0.0, 12.2.1.3.0
Oracle CorporationWebLogic Server12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0

Timeline

References

Open in Interactive Console →