Exploitable Vulnerability in Oracle Fusion Middleware's WebLogic Server Console
CVE-2026-35303
8.8HIGH
What is CVE-2026-35303?
An exploitable vulnerability has been identified in the Console of Oracle's WebLogic Server within the Fusion Middleware suite. The affected versions include 12.2.1.4.0 and 14.1.1.0.0. A low-privileged attacker with network access via HTTP can exploit this vulnerability, potentially leading to a complete takeover of the server instance. This situation poses significant risks to the confidentiality, integrity, and availability of the affected systems.
Affected Version(s)
WebLogic Server 12.2.1.4.0
WebLogic Server 14.1.1.0.0