Performing the function of monitoring information security in cyberspace, the National Cyber Security Monitoring Center (Information Security Department, Ministry of Information and Communications) has discovered and recorded the exploit code of the vulnerability CVE - 2024 - 21216. This vulnerability allows an authenticated attacker to gain control over the Oracle WebLogic Server product.
By exploiting the vulnerability, the attacker can access the network system through exploiting the T4 and IIOP protocols.
The vulnerability has been fixed in the company's latest patch, however, in case the patch cannot be updated, users can block the protocols exploited by the vulnerability to reduce the possibility of being affected.
To ensure information security for users' information systems, contributing to ensuring the safety of Vietnam's cyberspace, the Information Security Department recommends that users check and review the information systems they are using that may be affected by the above attack campaigns. Proactively monitor information related to cyber attack campaigns to take early prevention measures and avoid the risk of being attacked.
Next is to strengthen monitoring and prepare response plans when detecting signs of exploitation and cyber attacks, and regularly monitor warning channels of authorities and large information security organizations to promptly detect cyber attack risks.
Users need to send a report of the system review results to the Information Security Department. If necessary, contact the Information Security Department's support contact.
