Name of the Vulnerable Software and Affected Versions:

Oracle WebLogic Server versions 12.2.1.3.0 through 14.1.1.0.0

Description:

The issue allows an unauthenticated attacker with network access via HTTP to compromise Oracle WebLogic Server. Successful attacks can result in the unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle WebLogic Server. This is due to insufficient input validation in the Web Services component.

Recommendations:

For versions 12.2.1.3.0, 12.2.1.4.0, and 14.1.1.0.0, update to a version that includes the fix for this issue.

At the moment, there is no information about a newer version that contains a fix for this vulnerability.