www.cisa.gov 6/1/2026, 6:41:25 PM · external

CISA flags Oracle WebLogic CVE-2024-21182 as actively exploited

CyberSIXT Evidence Panel

Primary Source

cve.org

CVE Intel

CVE-2024-21182 - NVD Not in KEV 7.5 HIGH

CISA KEV Not in KEV

Patch Patch Available

ON June 1, 2026, CISA announced the addition of a new vulnerability, CVE-2024-21182, related to Oracle WebLogic Server, to its Known Exploited Vulnerabilities Catalog. This vulnerability has been identified as actively exploited and poses significant risks to federal enterprises. The addition aligns with Binding Operational Directive 22-01, which mandates Federal Civilian Executive Branch agencies to address such vulnerabilities to safeguard against cyber threats. CISA encourages all organizations, not just federal agencies, to prioritize remediation of these vulnerabilities to mitigate cyberattack risks.

View Primary Source Via www.cisa.gov

Article by CyberSIXT

Timeline Coverage

Swipe to explore timeline

#8 Jun 2, 2026, 06:14 PM

thehackernews.com
Oracle WebLogic CVE-2024-21182 added to KEV amid active exploits
#7 Jun 2, 2026, 03:18 PM

securityaffairs.com
CISA adds Oracle WebLogic flaw CVE-2024-21182 to exploited list
#6 Jun 2, 2026, 11:39 AM

securityweek.com
CISA Alerts to Active Exploits of Unpatched Oracle WebLogic Flaw
#5 Jun 2, 2026, 08:11 AM

securityonline.info
CVE-2024-21182 Fuels SilentCryptoMiner Attack on Streaming Sites
#4 Jun 2, 2026, 06:00 AM

securityonline.info
Grandoreiro Banking Trojan Evades Defense via Lookalike Software
#3 Jun 2, 2026, 04:35 AM

securityonline.info
The Shai-Hulud Infiltration: Red Hat Exploited in Sovereign Supply Chain Breach
#2 Jun 1, 2026, 08:24 PM

cisa.gov
CISA’s KEV Catalog Helps Firms Tackle Oracle WebLogic Risk
#1 Jun 1, 2026, 12:00 PM Current article

www.cisa.gov
CISA flags Oracle WebLogic CVE-2024-21182 as actively exploited