CVE-2006-2461

2006-05-1910:00:00

mitre

www.cve.org

6.3 Medium

AI Score

Confidence

High

0.015 Low

EPSS

Percentile

87.2%

JSON

BEA WebLogic Server before 8.1 Service Pack 4 does not properly set the Quality of Service in certain circumstances, which prevents some transmissions from being encrypted via SSL, and allows remote attackers to more easily read potentially sensitive network traffic.

References

dev2dev.bea.com/pub/advisory/194

secunia.com/advisories/20130

securitytracker.com/id?1016102

www.vupen.com/english/advisories/2006/1828

exchange.xforce.ibmcloud.com/vulnerabilities/26459