Internet-Security.com TCP port 7001 details

Oracle WebLogic Server uses TCP 7001 as the default listen port for the AdminServer (HTTP and the T3 protocol), with the Admin Console typically at http://host:7001/console.
Many Oracle products that embed WebLogic (e.g., Oracle SOA Suite, OBIEE, Oracle EPM/Hyperion, PeopleSoft) expose admin or application endpoints on 7001 by default.
Apache Cassandra uses TCP 7001 for encrypted internode communication (ssl_storage_port), with unencrypted internode traffic on 7000; DataStax Enterprise follows the same convention.
Legacy BEA WebLogic installations (pre-Oracle) also commonly used 7001, and this default often persists after upgrades.
Port 7001 is frequently targeted for exploitation of WebLogic remote code execution flaws (e.g., CVE-2017-10271, CVE-2019-2725, CVE-2020-14882), making exposed 7001 services a common focus of attacker scanning.

TCP 7001