Oracle WebLogic CVE-2024-21182 Added to KEV Catalog After Active Exploitation

CISA added CVE-2024-21182 to its Known Exploited Vulnerabilities catalog on Monday, citing active exploitation of an Oracle WebLogic Server flaw with a CVSS score of 7.5. The vulnerability allows unauthenticated attackers with network access via T3 or IIOP to take control of servers. Oracle patched the flaw in its July 2024 CPU update. The flaw was independently discovered by multiple researchers and has seen public release of proof-of-concept exploits. CISA is the first to report real-world exploitation of the vulnerability in the wild.