CVE-2021-35617

Name of the Vulnerable Software and Affected Versions: Oracle WebLogic Server versions 12.1.3.0.0 through 14.1.1.0.0

Description: The issue allows an unauthenticated attacker with network access via IIOP to compromise Oracle WebLogic Server, potentially resulting in a takeover of the server.

Recommendations: For versions 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0, and 14.1.1.0.0, update to a version that includes the fix for this issue to prevent exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.