[ad_1]
Detection and Remediation
Now that we’ve lined the vulnerabilities, let’s get into how we are able to detect and mitigate these essential flaws utilizing a SaaS platform. Development Micro Cloud One™ consists of seven safety companies that assist builders construct securely and shortly from the second code is dedicated into their repository. It’s built-in with Development Micro Imaginative and prescient One™, which makes use of its industry-leading XDR capabilities to gather and correlate information throughout a number of safety layers. Each merchandise leverage automation, customizable APIs, and turnkey third-party integrations to simplify safety.
By deploying Development Micro Cloud One safety companies in your cloud atmosphere of selection, you possibly can frequently scan information, photos, containers, and even open supply code, for malware and misconfigurations. Development Micro Imaginative and prescient One ties all the things along with XDR—it correlates occasions throughout Development Micro Cloud One companies so you possibly can see all the things that’s taking place from a simple dashboard. Third-party integrations together with your most popular communication channels ensures everyone seems to be on the identical web page—superb for these adopting a DevSecOps tradition.
Okay, sufficient advertising. Let’s get into how Development Micro Cloud One companies can assist you detect Oracle WebLogic Server vulnerabilities earlier than a full-scale RCE assault is launched.
Development Micro Cloud One:
As we talked about, the attacker is scanning for Oracle WebLogic Server vulnerabilities so it could possibly launch a RCE assault and compromise the complete system. Development Micro Cloud One companies provide multi-layered safety to shore up hard-to-find T3 deserialization occasions. Development Micro Cloud One™ – Community Safety provides a layer of safety between the weak Oracle WebLogic Server whereas Development Micro Cloud One™ – Workload Safety ensures your helpful containers and information facilities are secured. Community Safety frequently scans and inspects ingress and egress visitors whereas leveraging protocol evaluation, anomaly detection, indicators of compromise (IoC) blocking, and different strategies to detect malware.
You possibly can customise Workload Safety post-scan actions to quarantine the detected risk for additional investigation, after which it will likely be launched or blocked. If the block motion is unsuccessful, different Workload Security measures are nonetheless activated to cease the risk. Whereas that is taking place, all essential groups are notified of the complete investigation through most popular communication channels.
The next is a listing of Community Safety and Workload Safety filters for detecting vulnerabilities:Workload Safety:1010590 – Oracle WebLogic Server Distant Code Execution Vulnerabilities (CVE-2020-14882, CVE-2020-14750 and CVE-2020-14883)
1011096 – Oracle WebLogic Server Distant Code Execution Vulnerability (CVE-2021-2394)
Community Safety:Oracle WebLogic Server Distant Code Execution Vulnerability (CVE-2020-14750,CVE-2020-14882, CVE-2020-14883)
Oracle WebLogic Server Reminiscence Corruption Vulnerability
Development Micro Imaginative and prescient One:
XDR capabilities correlate the Oracle WebLogic Server detections into the Development Micro Imaginative and prescient One) Workbench, permitting safety groups to see the complete chain of assault and drill-down into affected elements.
Incident View:Right here is the incident view of CVE-2021-2394. This view offers you a snapshot of the vulnerability.
[ad_2]