Description
Vulnerability in the WebLogic Server product of Oracle Fusion Middleware (component: Console). Supported versions that are affected are 14.1.2.0.0 and 15.1.1.0.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTPS to compromise WebLogic Server. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in WebLogic Server, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all WebLogic Server accessible data as well as unauthorized access to critical data or complete access to all WebLogic Server accessible data. CVSS 3.1 Base Score 8.7 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N).
Published: 2026-06-16
Score: 8.7 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A remote console flaw in Oracle WebLogic Server allows a low‑privileged attacker with network access via HTTPS to compromise the server. The vulnerability enables the attacker to create, modify or delete critical data and to gain complete access to all data reachable through the console. The exploitation also allows unauthorized access to critical data or complete access to all WebLogic Server accessible data. The attack requires only minimal privileges, but requires human interaction from a person other than the attacker.

Affected Systems

Oracle WebLogic Server versions 14.1.2.0.0 and 15.1.1.0.0 are affected. The CVE notes that a scope change may allow the flaw to influence other WebLogic‑based products within the same environment.

Risk and Exploitability

Based on the CVE description, the flaw is a remote console vulnerability that permits a low‑privileged attacker with network connectivity over HTTPS to compromise the WebLogic Server. Successful exploitation requires human interaction from a person other than the attacker; the attacker need not have privileged credentials. The attack can lead to unauthorized creation, deletion, or modification of critical data and complete access to all data reachable through the console. The CVSS base score of 8.7 highlights severe confidentiality and integrity impacts. The EPSS score (<1%) and absence from the CISA KEV catalog indicate that widespread exploitation is currently unlikely.

Generated by OpenCVE AI on June 19, 2026 at 00:27 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Install the latest Oracle security patch for WebLogic Server 14.1.2.0.0 and 15.1.1.0.0 as released by Oracle.
  • Restrict HTTPS access to the WebLogic console to trusted IP ranges or via a VPN to reduce the attack surface.
  • Ensure that only authorized administrators use the console and apply the principle of least privilege for all console accounts.
  • Enable and regularly review WebLogic access logs to detect unauthorized attempts or anomalous modifications.

Generated by OpenCVE AI on June 19, 2026 at 00:27 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 19 Jun 2026 00:45:00 +0000

Type Values Removed Values Added
Title Remote Console Access Exploit Enabling Unauthorized Data Modification in Oracle WebLogic Server

Thu, 18 Jun 2026 22:15:00 +0000

Type Values Removed Values Added
Title WebLogic Server Console Remote Access Vulnerability Allowing Low‑Privileged Modification of Data
Weaknesses CWE-284

Thu, 18 Jun 2026 04:45:00 +0000

Type Values Removed Values Added
Title WebLogic Server Console Remote Access Vulnerability Allowing Low‑Privileged Modification of Data
Weaknesses CWE-284
CWE-601
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Tue, 16 Jun 2026 20:45:00 +0000

Type Values Removed Values Added
Description Vulnerability in the WebLogic Server product of Oracle Fusion Middleware (component: Console). Supported versions that are affected are 14.1.2.0.0 and 15.1.1.0.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTPS to compromise WebLogic Server. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in WebLogic Server, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all WebLogic Server accessible data as well as unauthorized access to critical data or complete access to all WebLogic Server accessible data. CVSS 3.1 Base Score 8.7 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N).
First Time appeared Oracle
Oracle weblogic Server
CPEs cpe:2.3:a:oracle:weblogic_server:14.1.2.0.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:weblogic_server:15.1.1.0.0:*:*:*:*:*:*:*
Vendors & Products Oracle
Oracle weblogic Server
References
Metrics cvssV3_1

{'score': 8.7, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N'}


Subscriptions

Oracle Weblogic Server
cve-icon MITRE

Status: PUBLISHED

Assigner: oracle

Published:

Updated: 2026-06-18T03:56:13.873Z

Reserved: 2026-04-01T20:03:40.834Z

Link: CVE-2026-35258

cve-icon Vulnrichment

Updated: 2026-06-17T14:35:31.889Z

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-19T00:30:17Z

Weaknesses
  • CWE-601

    URL Redirection to Untrusted Site ('Open Redirect')