CVE-2018-2628
ENISA EUVD: EUVD-2018-14483 ↗
Exploited in the Wild
✓ Confirmed 0-Day
Triaged: March 5, 2026
2 articles
Published: 2018-04-19
EPSS Score
Source: FIRST.org · 2026-05-23
94.42%
probability
This CVE has a 94.42% probability
of being exploited in the next 30 days.
0%
Top 100.0th percentile of all CVEs
100%
CVSS v3.1
Source: VulnerabilityLookup (CIRCL)9.8
CRITICAL
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CVSS v2 (legacy)
7.5
HIGH
Access Vector
Network
Access Complexity
Low
Authentication
None
Confidentiality
Partial
Integrity
Partial
Availability
Partial
AV:N/AC:L/Au:N/C:P/I:P/A:P
Description
VulnerabilityLookup (CNA)Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: WLS Core Components). Supported versions that are affected are 10.3.6.0, 12.1.3.0, 12.2.1.2 and 12.2.1.3. Easily exploitable vulnerability allows unauthenticated attacker with network access via T3 to compromise Oracle WebLogic Server. Successful attacks of this vulnerability can result in takeover of Oracle WebLogic Server. CVSS 3.0 Base Score 9.8 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H).
Affected Products
Oracle Corporation
WebLogic Server
10.3.6.0
12.1.3.0
12.2.1.2
12.2.1.3
Attack Intelligence
Exploits & PoC
0xn0ne/weblogicScanner
weblogic 漏洞扫描工具。目前包含对以下漏洞的检测能力:CVE-2014-4210、CVE-2016-0638、CVE-2016-3510、CVE-2017-3248、CVE-2017-3506、CVE-2017-10271、CVE-2018-2628、CVE-2018-2893、CVE-20
2069
2023-11-24
tdy218/ysoserial-cve-2018-2628
Some codes for bypassing Oracle WebLogic CVE-2018-2628 patch
114
2018-05-21
jas502n/CVE-2018-2628
Weblogic 反序列化漏洞(CVE-2018-2628)
107
2019-09-30
shengqi158/CVE-2018-2628
CVE-2018-2628 & CVE-2018-2893
78
2018-07-20
forlin/CVE-2018-2628
CVE-2018-2628
20
2018-04-18
aedoo/CVE-2018-2628-MultiThreading
WebLogic WLS核心组件反序列化漏洞多线程批量检测脚本 CVE-2018-2628-MultiThreading
15
2018-04-19
14
2018-04-18
0xMJ/CVE-2018-2628
漏洞利用工具
12
2019-01-07
Lighird/CVE-2018-2628
CVE-2018-2628漏洞工具包
9
2018-10-30
Nervous/WebLogic-RCE-exploit
A remote code execution exploit for WebLogic based on CVE-2018-2628
5
2018-09-04
3
2018-07-02
2
2018-04-20
2
2018-04-20
skydarker/CVE-2018-2628
CVE-2018-2628
1
2018-04-18
victor0013/CVE-2018-2628
CVE-2018-2628
1
2018-04-18
1
2018-04-19
herantong/CVE-2018-2628
在python3中运行的脚本
1
2026-01-07
0
2018-04-20
wrysunny/cve-2018-2628
cve-2018-2628 反弹shell
0
2018-06-05
0
2018-06-26
0
2020-08-07
0
2021-09-04
cscadoge/weblogic-cve-2018-2628
weblogic-cve-2018-2628-exp
0
2022-07-27
23 repos — triés par ⭐
Rechercher sur GitHub ↗
https://github.com/brianwrf/CVE-2018-2628
x_refsource_MISC
https://www.exploit-db.com/exploits/44553/
exploit
x_refsource_EXPLOIT-DB
http://www.securityfocus.com/bid/103776
vdb-entry
x_refsource_BID
http://www.securitytracker.com/id/1040696
vdb-entry
x_refsource_SECTRACK
https://www.exploit-db.com/exploits/46513/
exploit
x_refsource_EXPLOIT-DB
http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html
x_refsource_CONFIRM
Signal Intelligence
Confidence
75%
EPSS
94.42%
CVSS v3.1
9.8
Mentions
2
Last Seen
Jul 26, 2018
CNA Information
CNA Assigner
oracle
Analyst Note
CVE-2018-2628 is a critical Oracle WebLogic vulnerability (CVSS 9.8) published April 19, 2018. CERT-EU explicitly documented exploitation in the wild. While Google Project Zero and CISA KEV listings are absent, the contemporary CERT-EU advisory reporting active exploitation coinciding with the April 2018 publication date supports zero-day classification. The unauthenticated network-accessible attack vector and immediate real-world exploitation align with zero-day indicators.
Triage Info
Decided atMar 05, 2026
Published DateApr 19, 2018