Author: quynhle
Gadget chain
javax.management.BadAttributeValueExpException.readObject()
oracle.security.jps.az.internal.common.principals.toString()
oracle.security.jps.az.internal.common.principals.getResolvedPrincipal()
. . . con.newInstance() . . .
com.tangosol.coherence.mvel2.sh.ShellSession()
com.tangosol.coherence.mvel2.sh.ShellSession.exec()
. . . MVEL expression . . .
---> RCE
- Orace Weblogic Server: 12.1.2.3
- Oracle Business Intelligence: 12.1.2.4
- Oracle Database 19c
