CVE-2024-21182: Oracle WebLogic Server

What is CVE-2024-21182?

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core). Supported versions that are affected are 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via T3, IIOP to compromise Oracle WebLogic Server. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle WebLogic Server accessible data. CVSS 3.1 Base Score 7.5 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N).

CVSS7.5 NVD 3.1

SeverityHIGH

Exploitation In the wild In CISA KEV

EPSS90% · P100

Triage statusActive Exploit

ActionPatch immediately

CVSS vectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CWENVD-CWE-noinfo

NVD published2024-07-16

NVD last modified2026-06-01

CISA Known Exploited Vulnerability

Oracle WebLogic Server Unspecified Vulnerability

Added to KEV2026-06-01

Federal patch deadline2026-06-04

Known ransomware useUnknown

Affected product

Oracle WebLogic Server

Remediation Steps

Apply the vendor security update for Oracle Weblogic Server as a priority.
Restrict network exposure of the affected service to trusted sources until patched.
Review logs and detections for indicators of exploitation.
Confirm fixed versions against the official vendor advisory before deploying.

References

Coverage on defend.network

Vulnerability Priority Report – Week 2 of June 2026 (June 8 – 14)
Vulnerability Priority Report – Week 1 of June 2026 (June 1 – 7)
Android, WinRAR, WordPress Kirki: Three critical zero-days under active exploitation (2026-06-03)

🤖 This CVE page is generated by defend.network from NVD, CISA KEV, EPSS, and our verified daily briefings. Severity and exploitation data come from official sources; always verify remediation steps against the official vendor advisory before acting in production.