Weblogic Server Security Vulnerabilities and Issues — Weblogic Server CVE List

Lucene search

OracleWeblogic Server

5 matches found

CVE•added 2008/07/15 11:41 p.m.•114 views

CVE-2008-2579

Unspecified vulnerability in the WebLogic Server Plugins for Apache, Sun and IIS web servers component in Oracle BEA Product Suite 10.0 MP1, 9.2 MP3, 9.1, 9.0, 8.1 SP6, 7.0 SP7, and 6.1 SP7 has unknown impact and remote attack vectors.

7.5CVSS6.2AI score0.00874EPSS

CVE•added 2008/07/22 4:41 p.m.•100 views

CVE-2008-3257

Stack-based buffer overflow in the Apache Connector (mod_wl) in Oracle WebLogic Server (formerly BEA WebLogic Server) 10.3 and earlier allows remote attackers to execute arbitrary code via a long HTTP version string, as demonstrated by a string after "POST /.jsp" in an HTTP request.

10CVSS7.4AI score0.71508EPSS

CVE•added 2008/07/15 11:41 p.m.•44 views

CVE-2008-2578

Unspecified vulnerability in the WebLogic Server component in Oracle BEA Product Suite 10.0 and 9.2 MP1 has unknown impact and local attack vectors.

4.3CVSS5.8AI score0.00185EPSS

CVE•added 2008/07/15 11:41 p.m.•41 views

CVE-2008-2576

Unspecified vulnerability in the WebLogic Server component in Oracle BEA Product Suite 9.2, 9.1, 9.0, and 8.1 SP6 has unknown impact and local attack vectors.

4.4CVSS5.8AI score0.00143EPSS

CVE•added 2008/07/15 11:41 p.m.•40 views

CVE-2008-2577

Unspecified vulnerability in the WebLogic Server component in Oracle BEA Product Suite 9.2 MP1 has unknown impact and remote authenticated attack vectors.

4.6CVSS5.7AI score0.00901EPSS