Skip to main content
CVE-2015-4852 CRITICAL POC KEV PATCH THREAT Act Now

The WLS Security component in Oracle WebLogic Server 10.3.6.0, 12.1.2.0, 12.1.3.0, and 12.2.1.0 allows remote attackers to execute arbitrary commands via a crafted serialized Java object in T3. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Actively exploited in the wild (cisa kev) and public exploit code available.

Java Apache Oracle Deserialization
NVD GitHub Exploit-DB VulDB
CVSS 3.1
9.8
EPSS
92.9%
Threat
7.7
CVE-2015-8051 CRITICAL PATCH Act Now

The Adobe Premiere Clip app before 1.2.1 for iOS mishandles unspecified input, which has unknown impact and attack vectors. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity.

Adobe Apple Information Disclosure Premiere Clip
NVD
CVSS 2.0
10.0
EPSS
5.5%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy