CVE-2017-10271
Description
Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: WLS Security). Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0, 12.2.1.1.0 and 12.2.1.2.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via T3 to compromise Oracle WebLogic Server. Successful attacks of this vulnerability can result in takeover of Oracle WebLogic Server. CVSS 3.0 Base Score 7.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H).
In plain language
AI Act nowCVE-2017-10271 is a WebLogic Server flaw that can be exploited from the network to take over servers, and because it has been used in real ransomware activity, typical small businesses running WebLogic should act now.
CVE-2017-10271 is an unauthenticated remote compromise of Oracle WebLogic Server (WLS Security) exposed over T3; it enables attacker-driven takeover that has been observed in ransomware campaigns (CISA KEV).
What to do now
- Check whether your business uses Oracle WebLogic Server in affected versions: 10.3.6.0.0, 12.1.3.0.0, 12.2.1.1.0, or 12.2.1.2.0.
- If you are affected, obtain the Oracle CPU guidance for CVE-2017-10271 and plan the upgrade path from your Oracle support/download channel.
- Upgrade WebLogic Server to the vendor-fixed release described in Oracle’s CPU remediation instructions for CVE-2017-10271 (follow the exact version/patch steps for your branch).
- If you cannot patch immediately, restrict network access so that the T3 channel is not reachable from the internet and only allowed from trusted networks (per Oracle’s security guidance), then re-check exposure after changes.
CVSS Vector Breakdown
AV:NAttack VectorAC:LAttack ComplexityPR:NPrivileges RequiredUI:NUser InteractionS:UScopeC:NConfidentialityI:NIntegrityA:HAvailabilityWeaknesses
Affected Products
Exploitability
Required action: Apply updates per vendor instructions.
Exploit details including PoC links, Metasploit modules, and scanner templates are available after registration.
View exploit detailsAttack Graph
Click technique nodes for MITRE ATT&CK details · drag to pan · Ctrl/⌘ + scroll to zoom, or go fullscreen.
MITRE ATT&CK
2 techniquesReferences
Unlock Complete Vulnerability Intelligence
Get the full picture for CVE-2017-10271 and every CVE in our database. Create a free account — no credit card required.
Create Free Account