7.6 High
AI Score
Confidence
Low
2.6 Low
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:H/Au:N/C:P/I:N/A:N
0.006 Low
EPSS
Percentile
79.0%
BEA WebLogic Server 8.1 up to SP4 and 7.0 up to SP6 allows remote attackers to obtain the source code of JSP pages during certain circumstances related to a βtiming windowβ when a compilation error occurs, aka the βJSP showcode vulnerability.β
CPE | Name | Operator | Version |
---|---|---|---|
bea:weblogic_server | bea weblogic server | eq | 8.1 |
bea:weblogic_server | bea weblogic server | eq | 7.0 |