securityaffairs.com 6/2/2026, 4:32:09 PM · external

CISA adds Oracle WebLogic flaw CVE-2024-21182 to exploited list

CyberSIXT Evidence Panel

Primary Source

cisa.gov

CVE Intel

CVE-2024-21182 - NVD CISA KEV due 2026-06-04 7.5 HIGH

CISA KEV Listed in KEV

Patch Patch Available

THE U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a new vulnerability in Oracle WebLogic Server, identified as CVE-2024-21182, to its Known Exploited Vulnerabilities catalog. This flaw, which has a CVSS score of 7.5, allows unauthenticated remote attackers to access sensitive information and potentially gain full control over affected servers. CISA mandates that federal agencies address this vulnerability by June 4, 2026, and urges private organizations to do the same. This addition highlights ongoing concerns over security risks within web infrastructure.

View Primary Source Via securityaffairs.com

Article by CyberSIXT

Timeline Coverage

Swipe to explore timeline

#8 Jun 2, 2026, 06:14 PM

thehackernews.com
Oracle WebLogic CVE-2024-21182 added to KEV amid active exploits
#7 Jun 2, 2026, 03:18 PM Current article

securityaffairs.com
CISA adds Oracle WebLogic flaw CVE-2024-21182 to exploited list
#6 Jun 2, 2026, 11:39 AM

securityweek.com
CISA Alerts to Active Exploits of Unpatched Oracle WebLogic Flaw
#5 Jun 2, 2026, 08:11 AM

securityonline.info
CVE-2024-21182 Fuels SilentCryptoMiner Attack on Streaming Sites
#4 Jun 2, 2026, 06:00 AM

securityonline.info
Grandoreiro Banking Trojan Evades Defense via Lookalike Software
#3 Jun 2, 2026, 04:35 AM

securityonline.info
The Shai-Hulud Infiltration: Red Hat Exploited in Sovereign Supply Chain Breach
#2 Jun 1, 2026, 08:24 PM

cisa.gov
CISA’s KEV Catalog Helps Firms Tackle Oracle WebLogic Risk
#1 Jun 1, 2026, 12:00 PM

cisa.gov
CISA flags Oracle WebLogic CVE-2024-21182 as actively exploited