CVE-2023-21839CISA KEV: Actively Exploited

Oracle WebLogic Server Unspecified Vulnerability

Published May 1, 2023·Updated May 1, 2023

Description

Oracle WebLogic Server contains an unspecified vulnerability that allows an unauthenticated attacker with network access via T3, IIOP, to compromise Oracle WebLogic Server.

Public Exploits & PoCs13 found

PoC: CVE-2023-21839

Weblogic CVE-2023-21839 RCE (无需Java依赖一键RCE)

28

PoC: CVE-2023-21839

CVE-2023-21839工具

11

PoC: POC_CVE-2023-21839

CVE-2023-21839 Python版本

2

PoC: CVE-2024-21182

Reproducible Docker lab for CVE-2024-21182 — Oracle WebLogic T3/IIOP OpaqueReference JNDI injection → unauthenticated RCE (CVE-2023-21839 patch-bypass family). One-command validate.sh.

1

PoC: CVE-2023-21839

Weblogic CVE-2023-21839 RCE (无需Java依赖一键RCE)

1

PoC: CVE-2023-21839

Weblogic CVE-2023-21839 RCE (无需Java依赖一键RCE)

1

PoC: CVE-2023-21839

Weblogic CVE-2023-21839 RCE (无需Java依赖一键RCE)

PoC: CVE-2023-21839

Weblogic CVE-2023-21839 RCE (无需Java依赖一键RCE)

PoC: CVE-2023-21839

Weblogic CVE-2023-21839 RCE (无需Java依赖一键RCE)

PoC: CVE-2023-21839

Weblogic CVE-2023-21839 RCE (无需Java依赖一键RCE)

PoC: CVE-2024-20931

CVE-2024-20931, this is the bypass of the patch of CVE-2023-21839

PoC: CVE-2023-21839

Weblogic CVE-2023-21839 RCE

PoC: CVE-2023-21839

CVE-2023-21839 exp

References

View on NVD Search GitHub Search Google

Get alerted for CVEs like this

Register your stack and get notified within minutes when a matching CVE drops.

Start monitoring free