"Harvard University Web Flaw Exposed It to Remote Attacks"

A Harvard University subdomain vulnerability exposed the website to Remote Code Execution (RCE) attacks, potentially enabling threat actors to steal and modify stored data. The Cybernews research team discovered the WebLogic Server vulnerability with a severity score of 9.8 out of 10, affecting the Harvard University courses website. WebLogic Server is a Java-based application server developed by the American multinational computer technology company Oracle. The vulnerability, tracked as CVE-2020-2551, enables an adversary to execute code remotely on a vulnerable server without authentication. Researchers note that exploiting this vulnerability allows an attacker to gain complete control over the vulnerable server and access or modify sensitive data or disrupt business operations. This article continues to discuss the potential exploitation and impact of the Harvard University subdomain vulnerability. 

Cybernews reports "Harvard University Web Flaw Exposed It to Remote Attacks"