CVSS: 9.8EPSS: 1%CPEs: 7EXPL: 0CVE-2009-1974
https://notcve.org/view.php?id=CVE-2009-1974
14 Jul 2009 — Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 10.3, 10.0 MP1, 9.2 MP3, 9.1, 9.0, 8.1 SP6, and 7.0 SP7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to the Servlet Container Package. Vulnerabilidad inespecífica en WebLogic Server component en BEA Product Suite v10.3, v10.0 MP1, v9.2 MP3, v9.1, v9.0, v8.1 SP6, y v7.0 SP7 permite a atacantes remotos afectar a la confidencialidad, la integridad y la disponibilidad a t... • http://osvdb.org/55906 •
CVSS: 9.8EPSS: 93%CPEs: 1EXPL: 1CVE-2009-1975 – Oracle WebLogic Server 10.3 - 'console-help.portal' Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2009-1975
14 Jul 2009 — Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 10.3 allows remote attackers to affect confidentiality, integrity, and availability, related to the WLS Console Package. Vulnerabilidad inespecífica en el componente WebLogic Server component en BEA Product Suite v10.3 permite a atacantes remotos afectar a la confidencialidad, la integridad y la disponibilidad, relacionada con WLS Console Package. • https://www.exploit-db.com/exploits/33079 •
CVSS: 8.8EPSS: 33%CPEs: 7EXPL: 0CVE-2009-1016
https://notcve.org/view.php?id=CVE-2009-1016
15 Apr 2009 — Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 10.3, 10.0 MP1, 9.2 MP3, 9.1, 9.0, 8.1 SP6, and 7.0 SP7 allows remote authenticated users to affect confidentiality, integrity, and availability, related to IIS. NOTE: the previous information was obtained from the April 2009 CPU. Oracle has not commented on claims from a reliable researcher that this is a stack-based buffer overflow involving an unspecified Server Plug-in and a crafted SSL certificate. Vulnerabilidad no especif... • http://secunia.com/secunia_research/2009-23 •
CVSS: 9.1EPSS: 0%CPEs: 5EXPL: 0CVE-2009-1003
https://notcve.org/view.php?id=CVE-2009-1003
15 Apr 2009 — Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 10.3, 10.0 MP1, 9.2 MP3, 9.1, and 9.0 allows remote attackers to affect integrity via unknown vectors related to "access to source code of web pages." Vulnerabilidad no especificada en el componente WebLogic Server de BEA Product Suite v10.3, v10.0 MP1, v9.2 MP3, v9.1 y v9.0; permite a atacantes remotos comprometer la integridad a través de vectores desconocidos. • http://osvdb.org/53762 •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2009-1001
https://notcve.org/view.php?id=CVE-2009-1001
15 Apr 2009 — Unspecified vulnerability in Oracle BEA WebLogic Portal 8.1 Gold through SP6 allows remote authenticated users to gain privileges via unknown vectors. Vulnerabilidad no especificada en el componente WebLogic Portal en BEA Product Suite v8.1 SP6 que permite a los usuarios autenticados afectar a la confidencialidad e integridad a través de vectores desconocidos. • http://osvdb.org/53767 •
CVSS: 8.2EPSS: 0%CPEs: 1EXPL: 0CVE-2009-1004
https://notcve.org/view.php?id=CVE-2009-1004
15 Apr 2009 — Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 10.3 allows remote attackers to affect confidentiality and integrity via unknown vectors. Vulnerabilidad no especificada en el componente WebLogic Server en BEA Product Suite v10.3 permite a atacantes remotos afectar a la confidencialidad e integridad a través de vectores desconocidos. • http://www.oracle.com/technetwork/topics/security/cpuapr2009-099563.html •
CVSS: 9.8EPSS: 0%CPEs: 7EXPL: 0CVE-2009-1002
https://notcve.org/view.php?id=CVE-2009-1002
15 Apr 2009 — Unspecified vulnerability in Oracle BEA WebLogic Server 10.3, 10.0 Gold through MP1, 9.2 Gold through MP3, 9.1, 9.0, 8.1 Gold through SP6, and 7.0 Gold through SP7 allows remote attackers to gain privileges via unknown vectors. Vulnerabilidad no especificada en el componente WebLogic Server en BEA Product Suite v10.3, v10.0 MP1, v9.2 MP3, v9.1, v9.0, v8.1 SP6, y v7.0 SP7 permite a los atacantes afectar a la confidencialidad e integridad a través de vectores desconocidos. • http://www.oracle.com/technetwork/topics/security/cpuapr2009-099563.html •
CVSS: 10.0EPSS: 1%CPEs: 7EXPL: 0CVE-2009-1012
https://notcve.org/view.php?id=CVE-2009-1012
15 Apr 2009 — Unspecified vulnerability in the plug-ins for Apache and IIS web servers in Oracle BEA WebLogic Server 7.0 Gold through SP7, 8.1 Gold through SP6, 9.0, 9.1, 9.2 Gold through MP3, 10.0 Gold through MP1, and 10.3 allows remote attackers to affect confidentiality, integrity, and availability. NOTE: the previous information was obtained from the April 2009 CPU. Oracle has not commented on claims from a reliable researcher that this is an integer overflow in an unspecified plug-in that parses HTTP requests, whic... • http://osvdb.org/53765 •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2009-1005
https://notcve.org/view.php?id=CVE-2009-1005
15 Apr 2009 — Unspecified vulnerability in the Oracle Data Service Integrator (AquaLogic Data Services Platform) component in BEA Product Suite 10.3.0, 3.2, 3.0.1, and 3.0 allows local users to affect confidentiality, integrity, and availability via unknown vectors. Vulnerabilidad no especificada en el componente Oracle Data Service Integrator (AquaLogic Data Services Platform) en BEA Product Suite v10.3.0, v3.2, v3.0.1, and v3.0 que permite a los usuario locales afectar a la confidencialidad, integridad y disponibilidad... • http://osvdb.org/53760 •
CVSS: 9.3EPSS: 1%CPEs: 7EXPL: 0CVE-2008-5461
https://notcve.org/view.php?id=CVE-2008-5461
14 Jan 2009 — Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 10.3, 10.0 MP1, 9.2 MP3, 9.1, 9.0, 8.1 SP6, 7.0, and SP7 allows remote attackers to affect confidentiality, integrity, and availability, related to WLS. NOTE: the previous information was obtained from the January 2009 CPU. Oracle has not commented on reliable researcher claims that this issue is cross-site scripting. Una vulnerabilidad no especificada en el componente WebLogic Server de Product Suite de BEA versiones 10.3, 10.0... • http://jvn.jp/en/jp/JVN93431860/index.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-264: Permissions, Privileges, and Access Controls •