CVSS: 7.5EPSS: 0%CPEs: 8EXPL: 0CVE-2010-0069
https://notcve.org/view.php?id=CVE-2010-0069
13 Jan 2010 — Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 7.0, SP7, 8.1SP6, 9.0, 9.1, 9.2MP3, 10.0MP1, and 10.3.0 allows remote attackers to affect integrity via unknown vectors. vulnerabilidad inespecífica en el componente WebLogic Server en BEA Product Suite v7.0, SP7, v8.1SP6, v9.0, v9.1, v9.2MP3, v10.0MP1, y v10.3.0 permite a atacantes remotos influir en la integridad a través de vectores desconocidos. • http://www.oracle.com/technetwork/topics/security/cpujan2010-084891.html •
CVSS: 7.5EPSS: 0%CPEs: 7EXPL: 0CVE-2010-0074
https://notcve.org/view.php?id=CVE-2010-0074
13 Jan 2010 — Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 7.0SP7, 8.1SP6, 9.0, 9.1, 9.2MP3, 10.0MP2, and 10.3.1 allows remote attackers to affect availability via unknown vectors. vulnerabilidad inespecifica en el componente WebLogic Server en BEA Product Suite v7.0SP7, v8.1SP6, v9.0, v9.1, v9.2MP3, v10.0MP2, y 10.3.1 permite a atacantes remotos influir en la disponibilidad a través de vectores desconocidos. • http://www.oracle.com/technetwork/topics/security/cpujan2010-084891.html •
CVSS: 9.8EPSS: 1%CPEs: 7EXPL: 0CVE-2009-1974
https://notcve.org/view.php?id=CVE-2009-1974
14 Jul 2009 — Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 10.3, 10.0 MP1, 9.2 MP3, 9.1, 9.0, 8.1 SP6, and 7.0 SP7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to the Servlet Container Package. Vulnerabilidad inespecífica en WebLogic Server component en BEA Product Suite v10.3, v10.0 MP1, v9.2 MP3, v9.1, v9.0, v8.1 SP6, y v7.0 SP7 permite a atacantes remotos afectar a la confidencialidad, la integridad y la disponibilidad a t... • http://osvdb.org/55906 •
CVSS: 5.3EPSS: 35%CPEs: 93EXPL: 0CVE-2009-0217 – xml-security-1.3.0-1jpp.ep1.*: XMLDsig HMAC-based signatures spoofing and authentication bypass
https://notcve.org/view.php?id=CVE-2009-0217
14 Jul 2009 — The design of the W3C XML Signature Syntax and Processing (XMLDsig) recommendation, as implemented in products including (1) the Oracle Security Developer Tools component in Oracle Application Server 10.1.2.3, 10.1.3.4, and 10.1.4.3IM; (2) the WebLogic Server component in BEA Product Suite 10.3, 10.0 MP1, 9.2 MP3, 9.1, 9.0, and 8.1 SP6; (3) Mono before 2.4.2.2; (4) XML Security Library before 1.2.12; (5) IBM WebSphere Application Server Versions 6.0 through 6.0.2.33, 6.1 through 6.1.0.23, and 7.0 through 7.... • http://blogs.sun.com/security/entry/cert_vulnerability_note_vu_466161 •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2009-1001
https://notcve.org/view.php?id=CVE-2009-1001
15 Apr 2009 — Unspecified vulnerability in Oracle BEA WebLogic Portal 8.1 Gold through SP6 allows remote authenticated users to gain privileges via unknown vectors. Vulnerabilidad no especificada en el componente WebLogic Portal en BEA Product Suite v8.1 SP6 que permite a los usuarios autenticados afectar a la confidencialidad e integridad a través de vectores desconocidos. • http://osvdb.org/53767 •
CVSS: 9.8EPSS: 0%CPEs: 7EXPL: 0CVE-2009-1002
https://notcve.org/view.php?id=CVE-2009-1002
15 Apr 2009 — Unspecified vulnerability in Oracle BEA WebLogic Server 10.3, 10.0 Gold through MP1, 9.2 Gold through MP3, 9.1, 9.0, 8.1 Gold through SP6, and 7.0 Gold through SP7 allows remote attackers to gain privileges via unknown vectors. Vulnerabilidad no especificada en el componente WebLogic Server en BEA Product Suite v10.3, v10.0 MP1, v9.2 MP3, v9.1, v9.0, v8.1 SP6, y v7.0 SP7 permite a los atacantes afectar a la confidencialidad e integridad a través de vectores desconocidos. • http://www.oracle.com/technetwork/topics/security/cpuapr2009-099563.html •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2009-1005
https://notcve.org/view.php?id=CVE-2009-1005
15 Apr 2009 — Unspecified vulnerability in the Oracle Data Service Integrator (AquaLogic Data Services Platform) component in BEA Product Suite 10.3.0, 3.2, 3.0.1, and 3.0 allows local users to affect confidentiality, integrity, and availability via unknown vectors. Vulnerabilidad no especificada en el componente Oracle Data Service Integrator (AquaLogic Data Services Platform) en BEA Product Suite v10.3.0, v3.2, v3.0.1, and v3.0 que permite a los usuario locales afectar a la confidencialidad, integridad y disponibilidad... • http://osvdb.org/53760 •
CVSS: 10.0EPSS: 7%CPEs: 7EXPL: 0CVE-2009-1012
https://notcve.org/view.php?id=CVE-2009-1012
15 Apr 2009 — Unspecified vulnerability in the plug-ins for Apache and IIS web servers in Oracle BEA WebLogic Server 7.0 Gold through SP7, 8.1 Gold through SP6, 9.0, 9.1, 9.2 Gold through MP3, 10.0 Gold through MP1, and 10.3 allows remote attackers to affect confidentiality, integrity, and availability. NOTE: the previous information was obtained from the April 2009 CPU. Oracle has not commented on claims from a reliable researcher that this is an integer overflow in an unspecified plug-in that parses HTTP requests, whic... • http://osvdb.org/53765 •
CVSS: 8.8EPSS: 4%CPEs: 7EXPL: 0CVE-2009-1016
https://notcve.org/view.php?id=CVE-2009-1016
15 Apr 2009 — Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 10.3, 10.0 MP1, 9.2 MP3, 9.1, 9.0, 8.1 SP6, and 7.0 SP7 allows remote authenticated users to affect confidentiality, integrity, and availability, related to IIS. NOTE: the previous information was obtained from the April 2009 CPU. Oracle has not commented on claims from a reliable researcher that this is a stack-based buffer overflow involving an unspecified Server Plug-in and a crafted SSL certificate. Vulnerabilidad no especif... • http://secunia.com/secunia_research/2009-23 •
CVSS: 10.0EPSS: 81%CPEs: 7EXPL: 2CVE-2008-5457 – BEA WebLogic - JSESSIONID Cookie Value Overflow
https://notcve.org/view.php?id=CVE-2008-5457
14 Jan 2009 — Unspecified vulnerability in the Oracle BEA WebLogic Server Plugins for Apache, Sun and IIS web servers component in BEA Product Suite 10.3, 10.0 MP1, 9.2 MP3, 9.1, 9.0, 8.1 SP6, and 7.0 SP7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. Vulnerabilidad no especificada en el componente Oracle BEA WebLogic Server Plugins para Apache, Sun y IIS web servers en BEA Product Suite 10.3, 10.0, MP1, 9.2, MP3, 9.1, 9.0, 8.1, SP6, 7.0 y SP7 permite a atacantes remot... • https://www.exploit-db.com/exploits/16762 •