CVE-2015-4852: Oracle WebLogic Server Deserialization of Untrusted Data

Oracle WebLogic Server Deserialization of Untrusted Data Vulnerability. Oracle WebLogic Server contains a deserialization of untrusted data vulnerability within Apache Commons, which can allow for for remote code execution.

• CISA KEV-listed (remediation due 2022-05-03)
• EPSS 92.9% (99.8% percentile)

Browse the CVE database

Read the full analysis on IntelFusions