PatchSiren cyber security CVE debrief
CVE-2026-35303 Oracle Corporation CVE debrief
CVE-2026-35303 is a high-severity vulnerability in the Console component of Oracle WebLogic Server. The vulnerability has a CVSS score of 8.8 and can be easily exploited by a low-privileged attacker with network access via HTTP, potentially leading to a takeover of the WebLogic Server. The vulnerability affects Oracle WebLogic Server versions 12.2.1.4.0 and 14.1.1.0.0. The vulnerability is highly severe and has a high impact on confidentiality, integrity, and availability. Administrators and security teams responsible for Oracle WebLogic Server installations should be aware of this vulnerability and take immediate action to mitigate the risk.
- Vendor
- Oracle Corporation
- Product
- WebLogic Server
- CVSS
- HIGH 8.8
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-17
- Original CVE updated
- 2026-06-19
- Advisory published
- 2026-06-17
- Advisory updated
- 2026-06-19
Who should care
Administrators and security teams responsible for Oracle WebLogic Server installations, particularly those using versions 12.2.1.4.0 and 14.1.1.0.0, should be aware of this vulnerability and take immediate action to mitigate the risk. The vulnerability has a high impact on confidentiality, integrity, and availability, and can be easily exploited by a low-privileged attacker with network access via HTTP.
Technical summary
The vulnerability is located in the Console component of Oracle WebLogic Server and has been rated as highly severe with a CVSS score of 8.8. It can be easily exploited by a low-privileged attacker with network access via HTTP, potentially leading to a takeover of the WebLogic Server. The CVSS vector is CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H. The vulnerability affects Oracle WebLogic Server versions 12.2.1.4.0 and 14.1.1.0.0. The vulnerability has a high impact on confidentiality, integrity, and availability.
Defensive priority
High priority should be given to patching or mitigating this vulnerability, as it can be easily exploited and has a high impact on confidentiality, integrity, and availability.
Recommended defensive actions
- Apply the patches provided by Oracle as soon as possible
- Restrict access to the WebLogic Server Console to only necessary personnel
- Monitor for any suspicious activity on the WebLogic Server
- Consider implementing additional security controls, such as Web Application Firewalls (WAFs)
- Perform regular vulnerability assessments and penetration testing
- Review compensating controls for exposed systems while remediation is scheduled and verified
- Track exceptions, retest remediated assets, and close the item only after evidence is documented
Evidence notes
The CVE record was published on 2026-06-17T10:40:22.410Z and was last modified on 2026-06-19T06:17:02.407Z. The NVD entry is currently Analyzed. This information is based on the NVD entry and the CVE record. The vulnerability affects Oracle WebLogic Server versions 12.2.1.4.0 and 14.1.1.0.0. The CVSS score is 8.8, indicating a high severity vulnerability. The vulnerability can be easily exploited by a low-privileged attacker with network access via HTTP, potentially leading to a takeover of the WebLogic Server. The evidence is limited to the information provided in the CVE record and NVD entry.
Official resources
-
CVE-2026-35303 CVE record
CVE.org
-
CVE-2026-35303 NVD detail
NVD
-
Source item URL
nvd_modified
-
Mitigation or vendor reference
[email protected] - Vendor Advisory
AI-assisted PatchSiren debrief based on the supplied source corpus. The CVE record was published on 2026-06-17T10:40:22.410Z and has not been modified since then. The NVD entry is currently Analyzed.