CISA: Oracle Vulnerabilities From ‘Miracle Exploit’ Targeted in Attacks
September 19, 2024 at 11:06AM CISA added critical vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, including two Oracle flaws (CVE-2022-21445 and CVE-2020-14644). These can be exploited for remote code execution and system takeover. The flaws impact Oracle Fusion Middleware’s JDeveloper and WebLogic Server, and are linked to reported attacks on major organizations’ systems. Key … Read more