VDB
WID-SEC-W-2023-2946
WID-SEC-W-2023-2946
PUBLISHED
Oracle Fusion Middleware bündelt mehrere Produkte zur Erstellung, Betrieb und Management von intelligenten Business Anwendungen.
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Red Hat Enterprise Linux | ||
| Oracle Fusion Middleware |
Exploit Intelligence
- Apache Axis1.4 远程命令执行漏洞利用工具 - CVE-2019-0227,支持随机化服务名和Webshell文件名 (github-poc-repo)
- Apache Axis1.4 远程命令执行漏洞利用工具 - CVE-2019-0227,支持随机化服务名和Webshell文件名 (github-poc)
- 从老外那里下载了该漏洞的修复工程,无奈依赖包实在是太多下不下来,选取其中axis工程打成jar包后发现已成功修复项目的漏洞,有需要的亲可以下载重新打jar包替换即可。 clone后用idea打axis这个jar包即可 (github-poc-repo)
- Exphub[漏洞利用脚本库] 包括Webloigc、Struts2、Tomcat、Nexus、Solr、Jboss、Drupal的漏洞利用脚本,最新添加CVE-2020-14882、CVE-2020-11444、CVE-2020-10204、CVE-2020-10199、CVE-2020-1938、CVE-2020-2551、CVE-2020-2555、CVE-2020-2883、CVE-2019-17558、CVE-2019-6340 (github-poc-repo)
- poc for CVE-2020-2555 (github-poc-repo)
- LTiDi2000/CVE-2020-2551 (github-poc-repo)
- CVE-2020-2551 Exploiter (github-poc-repo)
- Weblogic Vuln POC EXP cve-2020-2551 cve-2020-2555 cve-2020-2883 ,。。。 (github-poc-repo)
- Weblogic com.tangosol.util.extractor.ReflectionExtractor RCE (github-poc-repo)
- CVE-2020-2546,CVE-2020-2915 CVE-2020-2801 CVE-2020-2798 CVE-2020-2883 CVE-2020-2884 CVE-2020-2950 WebLogic T3 payload exploit poc python3, (github-poc-repo)
…and 30 more exploits
Timeline
- Jan 14, 2020 CVE Published
- Nov 16, 2023 CVE Updated
- Apr 4, 2026 Distribution Patch
References
- https://wid.cert-bund.de/.well-known/csaf/white/2020/wid-sec-w-2023-2946.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-2946 advisory
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog url
- https://www.oracle.com/security-alerts/cpujan2020.html#AppendixFMW url
- https://access.redhat.com/errata/RHSA-2020:2113 url