CVE-2020-14750

Description from NVD

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Console). Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle WebLogic Server. Successful attacks of this vulnerability can result in takeover of Oracle WebLogic Server. CVSS 3.1 Base Score 9.8 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H).

Information Acquisition Date:2021-04-27T10:52Z

CVSS 2.0: 7.5 HIGH CVSS 3.x: 9.8 CRITICAL

▼ CVSS3 Vec CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector (AV)	Network	Adjacent	Local	Physical
Attack Complexity (AC)	LOW	High
Privileges Required (PR)	None	Low	High
User Interaction (UI)	None	Required
Scope (S)	Unchange	Change
Confidentiality (C)	None	Low	High
Integrity (I)	None	Low	High
Availability (A)	None	Low	High

▼ CVSS2 Vec AV:N/AC:L/Au:N/C:P/I:P/A:P

Attack Vector (AV)	Network	Adjacent	Local
Access Complexity (AC)	Low	Medium	High
Authentication (Au)	None	Single	Multiple
Confidentiality (C)	None	Parical	Complete
Integrity (I)	None	Partial	Complete
Availability (A)	None	Partial	Complete

NVD References

https://www.oracle.com/security-alerts/alert-cve-2020-14750.html
source:MISC
tags:Vendor Advisory

http://packetstormsecurity.com/files/160143/Oracle-WebLogic-Server-Administration-Console-Handle-Remote-Code-Execution.html
source:MISC
tags:

Description from Forti

Oracle WebLogic Fusion Middleware Authentication Bypass

This indicates an attack attempt to exploit an Authentication Bypass Vulnerability in Oracle WebLogic Server. The vulnerability is due to an error in the vulnerable application when handling a maliciously crafted request. This vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle WebLogic Server. Successful attacks of this vulnerability can result in takeover of Oracle WebLogic Server.

Information Acquisition Date:2020/11/05

Affected Products

Oracle WebLogic Server 10.3.6.0.0
Oracle WebLogic Server 12.1.3.0.0
Oracle WebLogic Server 12.2.1.3.0
Oracle WebLogic Server 12.2.1.4.0
Oracle WebLogic Server 14.1.1.0.0

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Apply the most recent upgrade or patch from the vendor.
https://www.oracle.com/security-alerts/cpuoct2020.html

References

Refer to Information on External Sites

CVE Infomation	Exploits or more Infomation
mitre	EXPLOIT DATABASE
NVD	0day.today
vulmon.com	github
CVE Details	Twitter
JVN ENG JPN
Reconshell

Software Tag: Oracle(1 tweets) Weblogic(1 tweets)

List of frequently cited URLs

URL	Num of Times Referred to
https://securityaffairs.co/wordpress/110329/hacking/cve-202...	12
https://ift.tt/3ets9eF	6
https://www.oracle.com/security-alerts/alert-cve-2020-14750...	5
https://www.helpnetsecurity.com/2020/10/29/cve-2020-14882/	5
https://twitter.com/USCERT_gov/status/1323343180218195969	4
https://www.zdnet.com/article/oracle-publishes-rare-out-of-...	4
https://github.com/pprietosanchez/CVE-2020-14750	3
https://www.ipa.go.jp/security/ciadr/vul/20201105_WebLogicS...	3
https://www.ncsc.gov.uk/report/weekly-threat-report-6th-nov...	3
https://us-cert.cisa.gov/ncas/current-activity/2020/11/02/o...	3
https://www.checkpoint.com/defense/advisories/public/2020/c...	3
https://research.trendmicro.com/3jcDbsx	3
https://www.bleepingcomputer.com/news/security/oracle-issue...	3

Information from Twitter

User	URL	Info Source	Date
Addidici	http://dirknachbar.blogspot.com/2020/11/cve-2020-14750-orac...	Source Addidici 1589600154390233088	2022/11/07
Addidici	http://dirknachbar.blogspot.com/2020/11/cve-2020-14750-orac...	Source Addidici 1589600154390233088	2022/11/07

List of frequently cited URLs

URL	Num of Times Referred to
securityaffairs.co	12
ift.tt	6
www.oracle.com	5
www.helpnetsecurity.com	5
twitter.com	4
www.zdnet.com	4
github.com	3
www.ipa.go.jp	3
www.ncsc.gov.uk	3
us-cert.cisa.gov	3
www.checkpoint.com	3
research.trendmicro.com	3
www.bleepingcomputer.com	3

Information from Twitter

User	URL	Info Source
Addidici	dirknachbar.blogspot.com	Show Tweet
Addidici	dirknachbar.blogspot.com	Show Tweet

GitHub Search Results: Up to 10

Name	URL
pprietosanchez/CVE-2020-14750	https://github.com/pprietosanchez/CVE-2020-14750
NS-Sp4ce/CVE-2020-14882	https://github.com/NS-Sp4ce/CVE-2020-14882
kkhacklabs/CVE-2020-14750	https://github.com/kkhacklabs/CVE-2020-14750
corelight/CVE-2020-14882-weblogicRCE	https://github.com/corelight/CVE-2020-14882-weblogicRCE

GitHub Search Results: Up to 10

Name	URL
pprietosanchez/CVE-2020-14750	github.com
NS-Sp4ce/CVE-2020-14882	github.com
kkhacklabs/CVE-2020-14750	github.com
corelight/CVE-2020-14882-weblogicRCE	github.com

2022/11/07 Score : 0
Added Har-sia Database : 2020/11/02
Last Modified : 2022/11/07
Highest Scored Date : 2020/11/03
Highest Score : 72