Oracle » Weblogic Server » 12.2.1.3.0 : Security Vulnerabilities, CVEs, Published In 2017 (Code Execution)
In Apache Log4j 2.x before 2.8.2, when using the TCP socket server or UDP socket server to receive serialized log events from another application, a specially crafted binary payload can be sent that, when deserialized, can execute arbitrary code.
Max CVSS
9.8
EPSS Score
81.95%
Published
2017-04-17
Updated
2022-04-04
1 vulnerabilities found