Oracle publishes rare out-of-band security update for WebLogic servers Oracle releases additional fix to patch a bug for the second time after the publication of proof-of-concept exploit code.

In June 2019, Oracle said that a critical remote code-execution flaw in its WebLogic Server (CVE-2019-2729) was being actively exploited in the wild.

Oracle listed WebLogic versions 10.3.6.0.0, 12.1.3.0.0, and 12.2.1.3.0 as impacted by the bug. The company released yesterday security fixes for affected versions.