Publication Date – January 13, 2020
The Oracle WebLogic Server vulnerability [CVE-2019-2729] allows attackers to remotely execute code on WebLogic servers without authentication.
Risks
Servers that are vulnerable to the Oracle WebLogic bug, are indicated by the presence of infected WebLogic machines that are attempting to find other vulnerable machines. Filter your portfolio to identify organizations that may be vulnerable to the publicized Oracle WebLogic Server problems.
What To Do
Find Oracle WebLogic servers within with the administrative interfaces exposed externally on port 7001.