CVSS: 9.3EPSS: 1%CPEs: 7EXPL: 0CVE-2008-5461
https://notcve.org/view.php?id=CVE-2008-5461
14 Jan 2009 — Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 10.3, 10.0 MP1, 9.2 MP3, 9.1, 9.0, 8.1 SP6, 7.0, and SP7 allows remote attackers to affect confidentiality, integrity, and availability, related to WLS. NOTE: the previous information was obtained from the January 2009 CPU. Oracle has not commented on reliable researcher claims that this issue is cross-site scripting. Una vulnerabilidad no especificada en el componente WebLogic Server de Product Suite de BEA versiones 10.3, 10.0... • http://jvn.jp/en/jp/JVN93431860/index.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 9.8EPSS: 0%CPEs: 5EXPL: 0CVE-2008-5462
https://notcve.org/view.php?id=CVE-2008-5462
14 Jan 2009 — Unspecified vulnerability in the WebLogic Portal component in BEA Product Suite 10.3, 10.2, 10.0 MP1, 9.2 MP3, and 8.1 SP6 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. Vulnerabilidad no especificada en el componente WebLogic Portal component en BEA Product Suite 10.3, 10.2, 10.0, MP1, 9.2, MP3, 8.1, y SP6 que permite atacantes remotos y afecta a la confidencialidad, integridad y disponibilidad a través de vectores desconocidos. • http://www.oracle.com/technetwork/topics/security/cpujan2009-097901.html • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 10.0EPSS: 86%CPEs: 8EXPL: 1CVE-2008-4008 – BEA Weblogic - Transfer-Encoding Buffer Overflow
https://notcve.org/view.php?id=CVE-2008-4008
14 Oct 2008 — Unspecified vulnerability in the WebLogic Server Plugins for Apache component in BEA Product Suite 10.3, 10.0 MP1, 9.2 MP3, 9.1, 9.0, 8.1 SP6, 7.0 SP7, and 6.1 SP7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the October 2008 CPU. Oracle has not commented on reliable researcher claims that this issue is a stack-based buffer overflow in the WebLogic Apache Connector, related to an invalid parameter. Una vu... • https://www.exploit-db.com/exploits/16796 •
CVSS: 9.8EPSS: 1%CPEs: 5EXPL: 0CVE-2008-4010
https://notcve.org/view.php?id=CVE-2008-4010
14 Oct 2008 — Unspecified vulnerability in the WebLogic Workshop component in BEA Product Suite 10.3, 10.2, 10.0 MP1, 9.2 MP3, and 8.1 SP6 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to "some NetUI tags." Una vulnerabilidad no especificada en el componente WebLogic Workshop en BEA Product Suite versiones 10.3, 10.2, 10.0 MP1, 9.2 MP3 y 8.1 SP6, permite a los atacantes remotos afectar a la confidencialidad, integridad y disponibilidad por medio de desconocidos... • http://secunia.com/advisories/32302 •
CVSS: 9.8EPSS: 0%CPEs: 5EXPL: 0CVE-2008-4013
https://notcve.org/view.php?id=CVE-2008-4013
14 Oct 2008 — Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 10.0 MP1, 9.2 MP3, 9.1, 9.0, and 8.1 SP6 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. Vulnerabilidad no especificada en el componente WebLogic Server de BEA Product Suite 10.0 MP1, 9.2 MP3, 9.1, 9.0 y 8.1 SP6 permite a atacantes remotos afectar a la confidencialidad, integridad y disponibilidad mediante vectores desconocidos. • http://www.oracle.com/technetwork/topics/security/cpuoct2008-100299.html •
CVSS: 9.8EPSS: 0%CPEs: 12EXPL: 0CVE-2008-2581
https://notcve.org/view.php?id=CVE-2008-2581
15 Jul 2008 — Unspecified vulnerability in the WebLogic Server component in Oracle BEA Product Suite 10.0 MP1, 9.2 MP3, 9.1, 9.0, 8.1 SP6, and 7.0 SP7 has unknown impact and remote attack vectors related to UDDI Explorer. Una vulnerabilidad no especificada en el componente WebLogic Server en BEA Product Suite de Oracle versiones 10.0 MP1, 9.2 MP3, 9.1, 9.0, 8.1 SP6 y 7.0 SP7, presenta un impacto desconocido y vectores de ataque remotos relacionados con UDDI Explorer. • http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00727143 •
CVSS: 9.8EPSS: 0%CPEs: 7EXPL: 0CVE-2008-2582
https://notcve.org/view.php?id=CVE-2008-2582
15 Jul 2008 — Unspecified vulnerability in the WebLogic Server component in Oracle BEA Product Suite 10.0 MP1, 9.2 MP3, 9.1, 9.0, 8.1 SP6, and 7.0 SP7 has unknown impact and remote attack vectors. Una vulnerabilidad no especificada en el componente WebLogic Server en BEA Product Suite de Oracle versiones 10.0 MP1, 9.2 MP3, 9.1, 9.0, 8.1 SP6 y 7.0 SP7, presenta un impacto desconocido y vectores de ataque remotos. • http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00727143 •