Is CVE-2019-2578 known to be exploited?

8 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Oracle Corporation Webcenter Sites

CVE-2019-2578

Vulnerability in the Oracle WebCenter Sites component of Oracle Fusion Middleware (subcomponent: Advanced UI). The supported version that is affected is 12.2.1.3.0. Easily exploitable vulnerability allows unauthenticated attacker with netw…

EPSS: 0.792 (99.1th percentile) — read the EPSS interpretation.

Affected products

Oracle Corporation Webcenter Sites — versions 12.2.1.3.0

Public proof-of-concept exploits

20142995/nuclei-templates
ARPSyndicate/kenzer-templates
Leovalcante/wcs_
StarCrossPortal/scalpel
anonymous364872/Rapier_
apif-review/APIF_
apit-review-account/apit-tool
youcans896768/APIV_

References

www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html (x_refsource_MISC)

Frequently asked questions

What is CVE-2019-2578?: CVE-2019-2578 is a vulnerability in Oracle Corporation Webcenter Sites. Published 2019-04-23.
Is CVE-2019-2578 known to be exploited?: 8 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.