Oracle Weblogic Server Deserialization Remote Code Execution

An unauthenticated attacker with network access to the Oracle Weblogic Server T3 interface can send a serialized object to the interface to execute code on vulnerable hosts.

Leave a Reply