How to Mitigate the Impact of CVE-2020-14882 Weblogic Vulnerability (WLS) On ZDLRA with EXADATA IMAGE 19.3.13.0.0 or lower
(Doc ID 2733752.1)
Last updated on DECEMBER 10, 2020
Applies to:
Zero Data Loss Recovery Appliance Software - Version 12.1.0.1.0 to 19.2.1.1.1Information in this document applies to any platform.
Goal
How to mitigate impact of CVE-2020-14882 Oracle Web Logic Server (WLS) Vulnerability on ZDLRA with Exadata image 19.3.13.0.0 or lower.
Description:
This Security Alert addresses CVE-2020-14750, a remote code execution vulnerability in Oracle WebLogic Server. This vulnerability is related to CVE-2020-14882, which was addressed in the October 2020 Critical Patch Update. It is remotely exploitable without authentication, i.e., may be exploited over a network without the need for a username and password.
Reference: https://www.oracle.com/security-alerts/alert-cve-2020-14750.html
Description:
This Security Alert addresses CVE-2020-14750, a remote code execution vulnerability in Oracle WebLogic Server. This vulnerability is related to CVE-2020-14882, which was addressed in the October 2020 Critical Patch Update. It is remotely exploitable without authentication, i.e., may be exploited over a network without the need for a username and password.
Reference: https://www.oracle.com/security-alerts/alert-cve-2020-14750.html
Solution
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
Goal |
Solution |
References |