PatchSiren

PatchSiren cyber security CVE debrief

CVE-2026-35303 Oracle Corporation CVE debrief

CVE-2026-35303 is a high-severity vulnerability in the Console component of Oracle WebLogic Server. The vulnerability has a CVSS score of 8.8 and can be easily exploited by a low-privileged attacker with network access via HTTP, potentially leading to a takeover of the WebLogic Server. The vulnerability affects Oracle WebLogic Server versions 12.2.1.4.0 and 14.1.1.0.0. The vulnerability is highly severe and has a high impact on confidentiality, integrity, and availability. Administrators and security teams responsible for Oracle WebLogic Server installations should be aware of this vulnerability and take immediate action to mitigate the risk.

Vendor
Oracle Corporation
Product
WebLogic Server
CVSS
HIGH 8.8
CISA KEV
Not listed in stored evidence
Original CVE published
2026-06-17
Original CVE updated
2026-06-19
Advisory published
2026-06-17
Advisory updated
2026-06-19

Who should care

Administrators and security teams responsible for Oracle WebLogic Server installations, particularly those using versions 12.2.1.4.0 and 14.1.1.0.0, should be aware of this vulnerability and take immediate action to mitigate the risk. The vulnerability has a high impact on confidentiality, integrity, and availability, and can be easily exploited by a low-privileged attacker with network access via HTTP.

Technical summary

The vulnerability is located in the Console component of Oracle WebLogic Server and has been rated as highly severe with a CVSS score of 8.8. It can be easily exploited by a low-privileged attacker with network access via HTTP, potentially leading to a takeover of the WebLogic Server. The CVSS vector is CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H. The vulnerability affects Oracle WebLogic Server versions 12.2.1.4.0 and 14.1.1.0.0. The vulnerability has a high impact on confidentiality, integrity, and availability.

Defensive priority

High priority should be given to patching or mitigating this vulnerability, as it can be easily exploited and has a high impact on confidentiality, integrity, and availability.

Recommended defensive actions

  • Apply the patches provided by Oracle as soon as possible
  • Restrict access to the WebLogic Server Console to only necessary personnel
  • Monitor for any suspicious activity on the WebLogic Server
  • Consider implementing additional security controls, such as Web Application Firewalls (WAFs)
  • Perform regular vulnerability assessments and penetration testing
  • Review compensating controls for exposed systems while remediation is scheduled and verified
  • Track exceptions, retest remediated assets, and close the item only after evidence is documented

Evidence notes

The CVE record was published on 2026-06-17T10:40:22.410Z and was last modified on 2026-06-19T06:17:02.407Z. The NVD entry is currently Analyzed. This information is based on the NVD entry and the CVE record. The vulnerability affects Oracle WebLogic Server versions 12.2.1.4.0 and 14.1.1.0.0. The CVSS score is 8.8, indicating a high severity vulnerability. The vulnerability can be easily exploited by a low-privileged attacker with network access via HTTP, potentially leading to a takeover of the WebLogic Server. The evidence is limited to the information provided in the CVE record and NVD entry.

Official resources

AI-assisted PatchSiren debrief based on the supplied source corpus. The CVE record was published on 2026-06-17T10:40:22.410Z and has not been modified since then. The NVD entry is currently Analyzed.