Описание
BEA WebLogic Server 9.1 does not properly handle propagation of an admin server's security policy change log to temporarily unavailable managed servers, which might allow attackers to bypass intended restrictions, a different vulnerability than CVE-2007-0426.
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:bea:weblogic_server:9.1:*:*:*:*:*:*:*
EPSS
Процентиль: 58%
0.00365
Низкий
7.5 High
CVSS2
Дефекты
CWE-264
Связанные уязвимости
github
почти 4 года назад
BEA WebLogic Server 9.1 does not properly handle propagation of an admin server's security policy change log to temporarily unavailable managed servers, which might allow attackers to bypass intended restrictions, a different vulnerability than CVE-2007-0426.
EPSS
Процентиль: 58%
0.00365
Низкий
7.5 High
CVSS2
Дефекты
CWE-264