Additional Information About the Oracle WebLogic Server Vulnerability CVE-2018-2628
(Doc ID 2395745.1)
Last updated on FEBRUARY 03, 2020
Applies to:Oracle WebLogic Server - Version 10.3.6 to 188.8.131.52.0
Information in this document applies to any platform.
The April 2018 Critical Patch Update provided patches for a number of security vulnerabilities, including vulnerability CVE-2018-2628 which affects various versions of Oracle WebLogic Server. Customers should refer to the Critical Patch Update Advisory to get more information about this vulnerability.
A number of security researchers have since claimed that the mitigation for vulnerability CVE-2018-2628 provided in the April 2018 Critical Patch Updated was incomplete.
Oracle WebLogic Server versions 10.3.6-184.108.40.206.0
To view full details, sign in with your My Oracle Support account.
Don't have a My Oracle Support account? Click to get started!
In this Document