CVE-2025-30753
BaseFortify
Publication date: 2025-07-15
Last updated on: 2025-07-25
Assigner: Oracle
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| oracle | weblogic_server | 12.2.1.4.0 |
| oracle | weblogic_server | 14.1.1.0.0 |
| oracle | weblogic_server | 14.1.2.0.0 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-400 | The product does not properly control the allocation and maintenance of a limited resource. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability exists in Oracle WebLogic Server (versions 12.2.1.4.0, 14.1.1.0.0, and 14.1.2.0.0) and allows a low privileged attacker with network access via HTTP to exploit it easily. The attacker can cause the server to hang or crash repeatedly, resulting in a denial of service (DoS).
How can this vulnerability impact me? :
The vulnerability can impact you by allowing an attacker to cause a denial of service on your Oracle WebLogic Server, making the server hang or crash frequently. This disrupts availability and can affect the normal operation of services relying on the server.