CVE-2008-4009

Опубликовано: 14 окт. 2008

Источник: nvd

CVSS2: 5.1

EPSS Низкий

Описание

Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 9.1, when configuring multiple authorizers, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.

Ссылки

http://secunia.com/advisories/32304
Vendor Advisory
http://www.oracle.com/technetwork/topics/security/cpuoct2008-100299.html
http://www.securitytracker.com/id?1021056
http://www.vupen.com/english/advisories/2008/2825
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/45908
https://support.bea.com/application_content/product_portlets/securityadvisories/2802.html
Vendor Advisory
http://secunia.com/advisories/32304
Vendor Advisory
http://www.oracle.com/technetwork/topics/security/cpuoct2008-100299.html
http://www.securitytracker.com/id?1021056
http://www.vupen.com/english/advisories/2008/2825
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/45908
https://support.bea.com/application_content/product_portlets/securityadvisories/2802.html
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:oracle:bea_product_suite:9.1:*:*:*:*:*:*:*

EPSS

Процентиль: 74%

0.00858

Низкий

5.1 Medium

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-q9c8-qxp9-6jcr

github

почти 4 года назад