As part of the Oracle October 2020 Critical Patch Update (CPU), two critical vulnerabilities were fixed in the Oracle WebLogic web application server (CVE-2020-14882/CVE-2020-14883) that allow an unauthenticated attacker to compromise the server. The fix was incomplete and a second patch was issued two weeks later to resolve multiple work-arounds (CVE-2020-14750). WebLogic is used as the web server for Oracle E-Business Suite 12.2 and is vulnerable to these security bugs. This educational webinar provides in-depth information and a demonstration of these vulnerabilities in an Oracle E-Business Suite environment as well steps that must be taken in every Oracle E-Business Suite environment to protect WebLogic from these and other future security vulnerabilities.
