Forum Discussion

Nimbostratus

Jul 26, 2018

Signature ID for CVE-2018-2893

Hi Team,

Kindly advise is there any signature ID for this CVE-2018-2893? This vulnerability is related to Oracle WebLogic Server component, will this vulnerability can be detected by F5 ASM WAF? Kindly advise on this

Regards, Venkat

ASM Advanced WAF

security

1 Reply

Simon_Blakely
Employee
Jul 26, 2018
Information on the latest Oracle security advisory and ASM is held here.

Oracle Periodically Security Update – Mitigating with ASM

There is not anything on CVE-2018-2893 yet, but as Proof of Concept code has been released in the wild, our ASM development team will be evaluating the exploit and producing a signature as rapidly as possible.