Skip to main content
See every side of every news story
Get Started
SubscribeLogin
Published loading...Updated

CISA Flags Two-Year-Old Oracle Flaw as Actively Exploited in Attacks

Summary by BleepingComputer
CISA has ordered government agencies to secure their systems against a high-severity Oracle WebLogic Server vulnerability that was patched two years ago and is now actively exploited in attacks.

7 Articles

BleepingComputerBleepingComputer
Center

CISA flags two-year-old Oracle flaw as actively exploited in attacks

CISA has ordered government agencies to secure their systems against a high-severity Oracle WebLogic Server vulnerability that was patched two years ago and is now actively exploited in attacks.

·New York, United States
Read Full Article
CSO OnlineCSO Online

Two-year old Oracle WebLogic Server vulnerability is being exploited

Its inclusion in the US CISA catalog of known exploited vulnerabilities is a warning to admins that patching is needed now.

Read Full Article
The Hacker NewsThe Hacker News
Reposted by
IT Security News - cybersecurity, infosecurity newsIT Security News - cybersecurity, infosecurity news

Oracle WebLogic CVE-2024-21182 Added to KEV Catalog After Active Exploitation

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a high-severity security flaw impacting Oracle WebLogic Server to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. The vulnerability, CVE-2024-21182 (CVSS score: 7.5), allows an unauthenticated attacker with network access to take control of susceptible servers. It was

Read Full Article
Cyber Security NewsCyber Security News

CISA Warns of Two-Year-Old Oracle WebLogic Server Vulnerability Exploited in Attacks

CISA has issued a fresh warning highlighting active exploitation of a critical Oracle WebLogic Server vulnerability, tracked as CVE-2024-21182, adding it to its Known Exploited Vulnerabilities (KEV) catalog on June 1, 2026. The alert underscores the increasing risk posed by exposed enterprise middleware systems, particularly those accessible over network protocols such as T3 and IIOP. The vulnerability affects Oracle WebLogic Server, a widely us…

Read Full Article
cybernoz.comcybernoz.com

CISA Issues Alert on Oracle WebLogic Server Flaw Under Active Exploitation

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical Oracle WebLogic Server vulnerability, tracked as CVE-2024-21182, to its Known Exploited Vulnerabilities (KEV) catalog, warning that the flaw is actively exploited in the wild. The alert, published on June 1, 2026, highlights the urgent risk to organizations that rely on Oracle WebLogic for enterprise applications. Oracle WebLogic Server Flaw CVE-2024-21182 is a…

Read Full Article
cisa.govcisa.gov

CISA Adds One Known Exploited Vulnerability to Catalog

CISA Adds One Known Exploited Vulnerability to Catalog chayes Jun 01, 2026 Release DateJune 01, 2026 DescriptionCISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation.CVE-2024-21182 Oracle WebLogic Server Unspecified VulnerabilityThis type of vulnerability is a frequent attack vectors for malicious cyber actors and poses significant risks to the federal enterprise. Bi…

Read Full Article
Think freely.Subscribe and get full access to Ground NewsSubscriptions start at $9.99/yearSubscribe

Bias Distribution

  • 100% of the sources are Center
100% Center

Factuality Info Icon

To view factuality data please Upgrade to Premium

Ownership

Info Icon

To view ownership data please Upgrade to Vantage

cisa.gov broke the news on Monday, June 1, 2026.
Too Big Arrow Icon
Sources are mostly out of (0)

Similar News Topics

Oracle icon

Oracle

CISA icon

CISA

United States icon

United States

News
Feed Dots Icon
For You
Search Icon
SearchBlindspot LogoBlindspotLocal