Oracle WebLogic CVE-2024-21182 Added to KEV Catalog After Active Exploitation

CISA added Oracle WebLogic vulnerability CVE-2024-21182 (CVSS 7.5) to its Known Exploited Vulnerabilities catalog after evidence of active exploitation; the flaw allows unauthenticated network access via T3/IIOP and can lead to full compromise of affected servers, and organizations (notably federal civilian agencies) are urged to apply Oracle's July 2024 patch promptly.