CVE-2018-2628 | Oracle WebLogic Server 10.3.6.0/12.1.3.0/12.2.1.2/12.2.1.3 WLS Core Components deserialization (EDB-44553 / Nessus ID 109201)
A vulnerability was found in Oracle WebLogic Server 10.3.6.0/12.1.3.0/12.2.1.2/12.2.1.3. It has been classified as very critical. This affects an unknown part of the component WLS Core Components. The manipulation leads to deserialization.
This vulnerability is uniquely identified as CVE-2018-2628. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.
It is recommended to upgrade the affected component.