CVE-2017-10271CISA KEV: Actively Exploited

Oracle Corporation WebLogic Server Remote Code Execution Vulnerability

Published Feb 10, 2022·Updated Feb 10, 2022

Description

Oracle Corporation WebLogic Server contains a vulnerability that allows for remote code execution.

Public Exploits & PoCs30 found

PoC: javaserializetools

Java反序列化漏洞利用工具V1.0 Java反序列化相关漏洞的检查工具,采用JDK 1.8+NetBeans8.2开发,软件运行必须安装JDK 1.8或者以上版本。 支持:weblogic xml反序列化漏洞 CVE-2017-10271/CNVD-C-2019-48814/CVE-2019-2725检查。

341

PoC: CVE-2017-10271

WebLogic Exploit

137

PoC: CVE-2017-10271

Oracle WebLogic WLS-WSAT Remote Code Execution Exploit (CVE-2017-10271)

119

PoC: WebLogic_CNVD_C2019_48814

WebLogic CNVD-C-2019_48814 CVE-2017-10271 Scan By 7kbstorm

118

PoC: CNVD-C-2019-48814-CNNVD-201904-961

CVE-2019-2725poc汇总 更新绕过CVE-2017-10271补丁POC

110

PoC: CVE-2017-10271

CVE-2017-10271 WEBLOGIC RCE (TESTED)

39

PoC: CVE-2017-10271

CVE-2017-10271 POC

29

PoC: weblogic_honeypot

WebLogic Honeypot is a low interaction honeypot to detect CVE-2017-10271 in the Oracle WebLogic Server component of Oracle Fusion Middleware. This is a Remote Code Execution vulnerability.

28

PoC: CVE-2017-10271

Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: WLS Security). Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0, 12.2.1.1.0 and 12.2.1.2.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle WebLogic Server. Successful attacks of this vulnerability can result in takeover of Oracle WebLogic Server.

24

PoC: JavaDeserialization

针对类似CVE-2017-10271漏洞的一个java反序列化漏洞扫描器

8

PoC: cve-2017-10271-poc

cve-2017-10271 POC

5

PoC: Weblogic_Wsat_RCE

POC for CVE-2017-10271. Since java.lang.ProcessBuilder was the original vector for RCE, there are multiple signature based rules that block this particular payload. Added java.lang.Runtime and will add others in the future. This is for educational purposes only: I take no responsibility for how you use this code.

4

PoC: CVE-2017-10271

CVE-2017-10271 Weblogic 漏洞验证Poc及补丁

4

PoC: -CVE-2017-10271-

(CVE-2017-10271)Java反序列化漏洞

3

PoC: weblogic_wls_wsat_rce

forked from https://github.com/s3xy/CVE-2017-10271. Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: WLS Security). Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0, 12.2.1.1.0 and 12.2.1.2.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle WebLogic Server.Modified by hanc00l

3

PoC: PoCs-Weblogic_2017_10271

Simplified PoC for Weblogic-CVE-2017-10271

3

PoC: CVE-2017-10271

CVE-2017-10271

2

PoC: CVE-2017-10271

Weblogic(CVE-2017-10271)

2

PoC: Oracle-WebLogic-WLS-WSAT

Oracle WebLogic WLS-WSAT Remote Code Execution Exploit (CVE-2017-10271)

2

PoC: weblogic-CVE-2019-2729-POC

python3 POC for CVE-2019-2729 WebLogic Deserialization Vulnerability and CVE-2017-10271 amongst others

1

PoC: WebLogic_CNVD_C_2019_48814

WebLogic CNVD-C-2019_48814 CVE-2017-10271

1

PoC: Oracle-WebLogic-CVE-2017-10271

Oracle-WebLogic-CVE-2017-10271

1

PoC: weblogic_wls_rce_poc-exp

cve-2017-10271

1

PoC: Oracle-WebLogic-CVE-2017-10271

WebLogic wls-wsat RCE CVE-2017-10271

1

PoC: CVE-2017-10271

Oracle WebLogic WLS-WSAT Remote Code Execution Exploit (CVE-2017-10271)

1

PoC: CVE-2017-10271

Oracle WebLogic WLS-WSAT Remote Code Execution Exploit (CVE-2017-10271)

PoC: 7kbstormq

WebLogic CNVD-C-2019_48814 CVE-2017-10271 Scan By 7kbstorm

PoC: CVE-2017-10271

CVE-2017-10271

PoC: cve-2017-10271

cve-2017-10271

PoC: CVE-2017-10271

Weblogic(CVE-2017-10271)

References

View on NVD Search GitHub Search Google

Get alerted for CVEs like this

Register your stack and get notified within minutes when a matching CVE drops.

Start monitoring free