CVE-2025-50072

Name of the Vulnerable Software and Affected Versions Oracle WebLogic Server versions 12.2.1.4.0 Oracle WebLogic Server versions 14.1.1.0.0 Oracle WebLogic Server versions 14.1.2.0.0

Description An easily exploitable issue exists in the Oracle WebLogic Server Core component, allowing an unauthenticated attacker with logon to the infrastructure to compromise the server. Successful exploitation can lead to unauthorized modification, insertion, or deletion of data accessible by Oracle WebLogic Server.

Recommendations Update Oracle WebLogic Server version 12.2.1.4.0 to a newer, fixed version. Update Oracle WebLogic Server version 14.1.1.0.0 to a newer, fixed version. Update Oracle WebLogic Server version 14.1.2.0.0 to a newer, fixed version.