ZDNet

Data leak, phishing security flaws disclosed in Oracle iPlanet Web Server

Tracked as CVE-2020-9315 and CVE-2020-9314, the security flaws allow for sensitive data exposure and limited injection attacks. First discovered by Nightwatch Cybersecurity researchers on January 19, ...

Attackers target Oracle WebLogic Server

Attackers are targeting a vulnerability in Oracle's WebLogic Server. It allows for full compromise of the instance.
CSOonline

Two-year old Oracle WebLogic Server vulnerability is being exploited

Its inclusion in the US CISA catalog of known exploited vulnerabilities is a warning to admins that patching is needed now. US federal government departments have been given until Thursday to patch a ...