CVSS: 6.8EPSS: 0%CPEs: 5EXPL: 0CVE-2008-5462
https://notcve.org/view.php?id=CVE-2008-5462
Unspecified vulnerability in the WebLogic Portal component in BEA Product Suite 10.3, 10.2, 10.0 MP1, 9.2 MP3, and 8.1 SP6 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. Vulnerabilidad no especificada en el componente WebLogic Portal component en BEA Product Suite 10.3, 10.2, 10.0, MP1, 9.2, MP3, 8.1, y SP6 que permite atacantes remotos y afecta a la confidencialidad, integridad y disponibilidad a través de vectores desconocidos. • http://www.oracle.com/technetwork/topics/security/cpujan2009-097901.html http://www.securityfocus.com/bid/33177 http://www.securitytracker.com/id?1021571 http://www.vupen.com/english/advisories/2009/0115 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 10.0EPSS: 96%CPEs: 7EXPL: 2CVE-2008-5457 – BEA WebLogic - JSESSIONID Cookie Value Overflow
https://notcve.org/view.php?id=CVE-2008-5457
Unspecified vulnerability in the Oracle BEA WebLogic Server Plugins for Apache, Sun and IIS web servers component in BEA Product Suite 10.3, 10.0 MP1, 9.2 MP3, 9.1, 9.0, 8.1 SP6, and 7.0 SP7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. Vulnerabilidad no especificada en el componente Oracle BEA WebLogic Server Plugins para Apache, Sun y IIS web servers en BEA Product Suite 10.3, 10.0, MP1, 9.2, MP3, 9.1, 9.0, 8.1, SP6, 7.0 y SP7 permite a atacantes remotos afectar la confidencialidad, integridad y disponibilidad mediante vectores desconocidos. • https://www.exploit-db.com/exploits/16762 https://www.exploit-db.com/exploits/8336 http://secunia.com/advisories/33526 http://www.oracle.com/technetwork/topics/security/cpujan2009-097901.html http://www.securityfocus.com/bid/33177 http://www.securitytracker.com/id?1021571 http://www.vupen.com/english/advisories/2009/0115 •
CVSS: 6.8EPSS: 0%CPEs: 5EXPL: 0CVE-2008-4013
https://notcve.org/view.php?id=CVE-2008-4013
Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 10.0 MP1, 9.2 MP3, 9.1, 9.0, and 8.1 SP6 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. Vulnerabilidad no especificada en el componente WebLogic Server de BEA Product Suite 10.0 MP1, 9.2 MP3, 9.1, 9.0 y 8.1 SP6 permite a atacantes remotos afectar a la confidencialidad, integridad y disponibilidad mediante vectores desconocidos. • http://www.oracle.com/technetwork/topics/security/cpuoct2008-100299.html http://www.securitytracker.com/id?1021056 http://www.vupen.com/english/advisories/2008/2825 https://exchange.xforce.ibmcloud.com/vulnerabilities/45912 •
CVSS: 5.1EPSS: 0%CPEs: 1EXPL: 0CVE-2008-4009
https://notcve.org/view.php?id=CVE-2008-4009
Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 9.1, when configuring multiple authorizers, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. Una vulnerabilidad no especificada en el componente WebLogic Server en BEA Product Suite versión 9.1, al configurar varios autorizadores, permite a los atacantes remotos afectar a la confidencialidad, integridad y disponibilidad por medio de vectores desconocidos. • http://secunia.com/advisories/32304 http://www.oracle.com/technetwork/topics/security/cpuoct2008-100299.html http://www.securitytracker.com/id?1021056 http://www.vupen.com/english/advisories/2008/2825 https://exchange.xforce.ibmcloud.com/vulnerabilities/45908 https://support.bea.com/application_content/product_portlets/securityadvisories/2802.html •
CVSS: 2.1EPSS: 0%CPEs: 4EXPL: 0CVE-2008-4011
https://notcve.org/view.php?id=CVE-2008-4011
Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 10.0 MP1, 9.2 MP3, 9.1, and 9.0 allows remote authenticated users to affect integrity via unknown vectors. Una vulnerabilidad no especificada en el componente WebLogic Server de BEA Product Suite 10.0 MP1, 9.2 MP3, 9.1 y 9.0 permite afectar la integridad del producto a usuarios remotos autenticados a través de vectores desconocidos. • http://www.oracle.com/technetwork/topics/security/cpuoct2008-100299.html http://www.securitytracker.com/id?1021056 http://www.vupen.com/english/advisories/2008/2825 https://exchange.xforce.ibmcloud.com/vulnerabilities/45910 •