CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2008-5459
https://notcve.org/view.php?id=CVE-2008-5459
14 Jan 2009 — Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 10.3 allows remote attackers to affect confidentiality via unknown vectors. Vulnerabilidad no especificada en el componente WebLogic Server en BEA Product Suite 10.3 que permite ataques remotos y afecta a la confidencialidad a través de vectores desconocidos. • http://secunia.com/advisories/33526 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.5EPSS: 0%CPEs: 5EXPL: 0CVE-2008-5460
https://notcve.org/view.php?id=CVE-2008-5460
14 Jan 2009 — Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 10.3, 10.0 MP1, 9.2 MP3, 9.1, and 9.0 allows remote attackers to affect confidentiality via unknown vectors. Vulnerabilidad no especificada en el componente WebLogic Server en BEA Product Suite 10.3, 10.0, MP1, 9.2, MP3, 9.1 y 9.0 permite a atacantes remotos afectar a la confidencialidad mediante vectores desconocidos • http://secunia.com/advisories/33526 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 9.3EPSS: 1%CPEs: 7EXPL: 0CVE-2008-5461
https://notcve.org/view.php?id=CVE-2008-5461
14 Jan 2009 — Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 10.3, 10.0 MP1, 9.2 MP3, 9.1, 9.0, 8.1 SP6, 7.0, and SP7 allows remote attackers to affect confidentiality, integrity, and availability, related to WLS. NOTE: the previous information was obtained from the January 2009 CPU. Oracle has not commented on reliable researcher claims that this issue is cross-site scripting. Una vulnerabilidad no especificada en el componente WebLogic Server de Product Suite de BEA versiones 10.3, 10.0... • http://jvn.jp/en/jp/JVN93431860/index.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 9.8EPSS: 0%CPEs: 5EXPL: 0CVE-2008-5462
https://notcve.org/view.php?id=CVE-2008-5462
14 Jan 2009 — Unspecified vulnerability in the WebLogic Portal component in BEA Product Suite 10.3, 10.2, 10.0 MP1, 9.2 MP3, and 8.1 SP6 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. Vulnerabilidad no especificada en el componente WebLogic Portal component en BEA Product Suite 10.3, 10.2, 10.0, MP1, 9.2, MP3, 8.1, y SP6 que permite atacantes remotos y afecta a la confidencialidad, integridad y disponibilidad a través de vectores desconocidos. • http://www.oracle.com/technetwork/topics/security/cpujan2009-097901.html • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 10.0EPSS: 86%CPEs: 8EXPL: 1CVE-2008-4008 – BEA Weblogic - Transfer-Encoding Buffer Overflow
https://notcve.org/view.php?id=CVE-2008-4008
14 Oct 2008 — Unspecified vulnerability in the WebLogic Server Plugins for Apache component in BEA Product Suite 10.3, 10.0 MP1, 9.2 MP3, 9.1, 9.0, 8.1 SP6, 7.0 SP7, and 6.1 SP7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the October 2008 CPU. Oracle has not commented on reliable researcher claims that this issue is a stack-based buffer overflow in the WebLogic Apache Connector, related to an invalid parameter. Una vu... • https://www.exploit-db.com/exploits/16796 •
CVSS: 9.8EPSS: 1%CPEs: 1EXPL: 0CVE-2008-4009
https://notcve.org/view.php?id=CVE-2008-4009
14 Oct 2008 — Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 9.1, when configuring multiple authorizers, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. Una vulnerabilidad no especificada en el componente WebLogic Server en BEA Product Suite versión 9.1, al configurar varios autorizadores, permite a los atacantes remotos afectar a la confidencialidad, integridad y disponibilidad por medio de vectores desconocidos. • http://secunia.com/advisories/32304 •
CVSS: 9.8EPSS: 1%CPEs: 5EXPL: 0CVE-2008-4010
https://notcve.org/view.php?id=CVE-2008-4010
14 Oct 2008 — Unspecified vulnerability in the WebLogic Workshop component in BEA Product Suite 10.3, 10.2, 10.0 MP1, 9.2 MP3, and 8.1 SP6 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to "some NetUI tags." Una vulnerabilidad no especificada en el componente WebLogic Workshop en BEA Product Suite versiones 10.3, 10.2, 10.0 MP1, 9.2 MP3 y 8.1 SP6, permite a los atacantes remotos afectar a la confidencialidad, integridad y disponibilidad por medio de desconocidos... • http://secunia.com/advisories/32302 •
CVSS: 6.5EPSS: 0%CPEs: 4EXPL: 0CVE-2008-4011
https://notcve.org/view.php?id=CVE-2008-4011
14 Oct 2008 — Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 10.0 MP1, 9.2 MP3, 9.1, and 9.0 allows remote authenticated users to affect integrity via unknown vectors. Una vulnerabilidad no especificada en el componente WebLogic Server de BEA Product Suite 10.0 MP1, 9.2 MP3, 9.1 y 9.0 permite afectar la integridad del producto a usuarios remotos autenticados a través de vectores desconocidos. • http://www.oracle.com/technetwork/topics/security/cpuoct2008-100299.html •
CVSS: 9.8EPSS: 0%CPEs: 5EXPL: 0CVE-2008-4013
https://notcve.org/view.php?id=CVE-2008-4013
14 Oct 2008 — Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 10.0 MP1, 9.2 MP3, 9.1, 9.0, and 8.1 SP6 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. Vulnerabilidad no especificada en el componente WebLogic Server de BEA Product Suite 10.0 MP1, 9.2 MP3, 9.1, 9.0 y 8.1 SP6 permite a atacantes remotos afectar a la confidencialidad, integridad y disponibilidad mediante vectores desconocidos. • http://www.oracle.com/technetwork/topics/security/cpuoct2008-100299.html •
CVSS: 9.8EPSS: 0%CPEs: 6EXPL: 0CVE-2008-2580
https://notcve.org/view.php?id=CVE-2008-2580
15 Jul 2008 — Unspecified vulnerability in the WebLogic Server component in Oracle BEA Product Suite 10.0 MP1, 9.2 MP3, 9.1, and 9.0 has unknown impact and remote attack vectors. Una vulnerabilidad no especificada en el componente WebLogic Server en BEA Product Suite de Oracle versiones 10.0 MP1, 9.2 MP3, 9.1 y 9.0, presenta un impacto desconocido y vectores de ataque remotos. • http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00727143 •