The Pakistan Telecommunication Authority (PTA) has issued a cybersecurity advisory warning about an actively exploited vulnerability in Oracle WebLogic Server.
The US Cybersecurity and Infrastructure Security Agency (CISA) recently reported that attackers are leveraging a critical OS command injection flaw, identified as CVE-2017-3506, which allows them to execute arbitrary code by sending crafted HTTP requests with malicious XML documents.
This vulnerability, with a CVSS score of 7.4, has previously been exploited by the cryptojacking group 8220 Gang to create botnets for cryptocurrency mining.
According to the advisory, the vulnerability affects several versions of Oracle WebLogic Server, including 10.3.6.0, 12.1.3.0, 12.2.1.0, 12.2.1.1, and 12.2.1.2. The flaw is classified as a Remote Code Execution threat, meaning attackers can potentially compromise systems remotely. This critical advisory highlights the need for organizations using WebLogic Server to prioritize their cybersecurity measures.
PTA recommends that users of the affected Oracle WebLogic Server versions immediately apply the latest patches and upgrades to safeguard their systems. Additional guidance includes monitoring systems for any unusual activity, as this could indicate an attempt to exploit the vulnerability. PTA also emphasizes the importance of implementing multi-factor authentication (MFA) to strengthen login security and mitigate risks associated with compromised access.
Further measures suggested in the advisory include network segmentation to contain and isolate threats, reducing the potential impact on critical systems. Organizations are also urged to establish a proactive patch management process to ensure timely deployment of security updates across all software and systems.
These measures, according to the advisory, are critical to defending against potential exploits by cybercriminals. In the event of any security incident, PTA requests that affected entities report promptly through its CERT Portal or via email.
Get the latest tech news, telecom insights, and product launches wherever you prefer.
Add ProPakistani to Preferred Sources and see more of our stories in Google Search and Top Stories.