{"uuid": "18a86371-cf01-422e-831e-a2e9cc27c036", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-14882", "type": "exploited", "source": "https://t.me/information_security_channel/42040", "content": "Juniper Threat Labs researchers observed active attacks on Oracle WebLogic software using CVE-2020-14882. This vulnerability, if successfully exploited, allows unauthenticated remote code execution.\u00a0 Researchers found almost 3,109 open Oracle WebLogic servers using Shodan. As a minimum of five different variants of attacks/payload. One particular payload installs a bot called DarkIRC. This bot performs a unique [\u2026]\nThe post Critical Oracle WebLogic Vulnerability Flaw Actively Exploited by DarkIRC Malware (https://gbhackers.com/oracle-weblogic-vulnerability/) appeared first on GBHackers On Security (https://gbhackers.com/).", "creation_timestamp": "2020-12-03T15:09:45.000000Z"}