Oracle WebLogic Server JNDI(CVE-2024-20931) and DLP
Article ID: 279987
Updated On:
Products
Data Loss Prevention
Data Loss Prevention Oracle Standard Edition 2
Issue/Introduction
Does the Oracle WebLogic Server JNDI (CVE-2024-20931) vulnerability affect DLP?
Resolution
Symantec DLP does not use the Oracle Weblogic server.
The Weblogic server is not included in the Oracle Standard database that is available on our website.
The CVE-2024-20931 vulnerability does not affect DLP since DLP does not use the Weblogic server.
The Oracle January 2024 CPU is available from Oracle to fix the CVE-2024-20931 vulnerability.
If you have an Oracle Weblogic server, your DBAs should install that CPU to address the vulnerability.
Do not install that CPU on the DLP Oracle database.
Feedback
Yes
No
Powered by
