Lucene search

[email protected]CVE-2008-4009

HistoryOct 14, 2008 - 9:11 p.m.

CVE-2008-4009

2008-10-1421:11:11

[email protected]

web.nvd.nist.gov

cve-2008-4009

weblogic server

bea product suite 9.1

vulnerability

confidentiality

integrity

availability

5.1 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

6.5 Medium

AI Score

Confidence

Low

0.009 Low

EPSS

Percentile

82.3%

JSON

Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 9.1, when configuring multiple authorizers, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.

Affected configurations

NVD

Node

oraclebea_product_suiteMatch9.1

CPENameOperatorVersion
oracle:bea_product_suiteoracle bea product suiteeq9.1

CPE	Name	Operator	Version
oracle:bea_product_suite	oracle bea product suite	eq	9.1

References

secunia.com/advisories/32304

www.oracle.com/technetwork/topics/security/cpuoct2008-100299.html

www.securitytracker.com/id?1021056

www.vupen.com/english/advisories/2008/2825

exchange.xforce.ibmcloud.com/vulnerabilities/45908

support.bea.com/application_content/product_portlets/securityadvisories/2802.html

5.1 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

6.5 Medium

AI Score

Confidence

Low

0.009 Low

EPSS

Percentile

82.3%

JSON

Related for CVE-2008-4009

cvelist1 nessus1 nvd1 prion1 oracle1 seebug1