Bea Weblogic Luki w zabezpieczeniach

Wersja

8.1	98
7.0	44
8.0	38
6.1	26
9.0	22

Przeciwdziałanie

Official Fix	124
Temporary Fix	0
Workaround	4
Unavailable	0
Not Defined	98

Wykorzystywanie

High	4
Functional	0
Proof-of-Concept	140
Unproven	4
Not Defined	78

Wektor dostępu

Not Defined	0
Physical	0
Local	36
Adjacent	16
Network	174

Uwierzytelnianie

Not Defined	0
High	0
Low	28
None	198

Interakcja z użytkownikiem

Not Defined	0
Required	22
None	204

CVSSv3 Base

≤1	0
≤2	0
≤3	2
≤4	22
≤5	18
≤6	74
≤7	40
≤8	44
≤9	22
≤10	4

CVSSv3 Temp

≤1	0
≤2	0
≤3	6
≤4	20
≤5	54
≤6	64
≤7	48
≤8	22
≤9	8
≤10	4

VulDB

≤1	0
≤2	0
≤3	2
≤4	22
≤5	18
≤6	74
≤7	40
≤8	44
≤9	22
≤10	4

NVD

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

CNA

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Sprzedawca

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Exploit 0-day

<1k	0
<2k	0
<5k	20
<10k	82
<25k	84
<50k	38
<100k	2
≥100k	0

Wykorzystaj dzisiaj

<1k	190
<2k	16
<5k	14
<10k	6
<25k	0
<50k	0
<100k	0
≥100k	0

Affected Versions (48): 3.0, 3.1, 3.1.8, 3.2, 3.2.1, 3.3, 3.4, 3.5, 3.6, 4, 4.0.4, 4.5, 4.5.1, 4.5.2, 5.0, 5.1, 6.0, 6.1, 6.1 SP2, 6.1 SP 2, 6.1 SP6, 6.1 SP7, 7, 7.0, 7.0 SP 1, 7.0 SP3, 7.0 SP5, 7.0.0.1, 7.0.0.1 SP 1, 7.0.0.1 SP2, 8.0, 8.0 SP2, 8.1, 8.1 SP1, 8.1 SP2, 8.1 SP3, 8.1 SP4, 8.1 SP5, 8.1.1, 8.1.2, 8.1.3, 8.1.4, 8.1.5, 8.3, 9.0, 9.1, 9.2, 10.0

Link to Product Website: https://www.oracle.com/corporate/acquisitions/bea/

Typ oprogramowania: Application Server Software

Opublikowano	Base	Temp	Słaby punkt	0day	Dzisiaj	Wyk	Prz	CTI	CVE
2008-07-22	10.0	10.0	BEA WebLogic Server mod_wl .jsp memory corruption	$25k-$100k	$0-$5k	High	Not Defined	0.00	CVE-2008-3257
2008-02-22	5.3	4.8	BEA WebLogic Server denial of service	$5k-$25k	$0-$5k	Proof-of-Concept	Official Fix	0.00	CVE-2008-0903
2008-02-22	4.3	4.1	BEA WebLogic Server cross site scripting	$5k-$25k	$0-$5k	Proof-of-Concept	Not Defined	0.00	CVE-2008-0902
2008-02-22	7.5	7.1	BEA WebLogic Server privilege escalation	$5k-$25k	$0-$5k	Proof-of-Concept	Not Defined	0.00	CVE-2008-0901
2008-02-22	6.3	6.0	BEA WebLogic Server privilege escalation	$5k-$25k	$0-$5k	Proof-of-Concept	Not Defined	0.00	CVE-2008-0900
2008-02-22	4.3	4.1	BEA WebLogic Server Administration Console cross site scripting	$5k-$25k	$0-$5k	Proof-of-Concept	Not Defined	0.00	CVE-2008-0899
2008-02-22	6.5	6.2	BEA WebLogic Server Access Restriction privilege escalation	$5k-$25k	$5k-$25k	Proof-of-Concept	Not Defined	0.00	CVE-2008-0898
2008-02-22	8.1	7.7	BEA WebLogic Server Access Restriction privilege escalation	$5k-$25k	$0-$5k	Proof-of-Concept	Not Defined	0.02	CVE-2008-0897
2008-02-22	5.4	4.9	BEA WebLogic Portal Access Restriction privilege escalation	$5k-$25k	$0-$5k	Proof-of-Concept	Official Fix	0.00	CVE-2008-0896
2008-02-22	6.5	6.2	BEA WebLogic Server weak authentication	$5k-$25k	$0-$5k	Proof-of-Concept	Not Defined	0.00	CVE-2008-0895
2008-02-20	7.3	6.9	BEA WebLogic Portal Administration Console privilege escalation	$5k-$25k	$0-$5k	Proof-of-Concept	Not Defined	0.00	CVE-2008-0870
2008-02-20	4.3	3.9	BEA WebLogic Workshop UI Framework cross site scripting	$5k-$25k	$0-$5k	Proof-of-Concept	Official Fix	0.00	CVE-2008-0869
2008-02-20	4.3	3.9	BEA WebLogic Portal cross site scripting	$5k-$25k	$0-$5k	Proof-of-Concept	Official Fix	0.00	CVE-2008-0868
2008-02-20	4.3	4.1	BEA WebLogic Workshop cross site scripting	$5k-$25k	$0-$5k	Proof-of-Concept	Not Defined	0.00	CVE-2008-0866
2008-02-20	5.3	5.0	BEA WebLogic Portal privilege escalation	$5k-$25k	$0-$5k	Proof-of-Concept	Not Defined	0.00	CVE-2008-0865
2008-02-20	5.3	5.0	BEA WebLogic Portal Access Restriction privilege escalation	$5k-$25k	$0-$5k	Proof-of-Concept	Not Defined	0.00	CVE-2008-0864
2008-02-20	5.3	5.0	BEA WebLogic Server information disclosure	$5k-$25k	$0-$5k	Proof-of-Concept	Not Defined	0.00	CVE-2008-0863
2007-12-12	7.3	6.9	BEA WebLogic Mobility Server weak authentication	$5k-$25k	$0-$5k	Proof-of-Concept	Not Defined	0.00	CVE-2007-6384
2007-08-30	6.5	6.2	BEA WebLogic Server information disclosure	$5k-$25k	$0-$5k	High	Official Fix	0.00	CVE-2007-4616
2007-08-30	6.5	6.2	BEA WebLogic Server nieznana luka	$5k-$25k	$5k-$25k	Proof-of-Concept	Not Defined	0.00	CVE-2007-4615
2007-08-28	7.5	6.5	BEA WebLogic Server denial of service	$5k-$25k	$0-$5k	Proof-of-Concept	Official Fix	0.00	CVE-2007-4618
2007-08-28	7.5	7.1	BEA WebLogic Server denial of service	$5k-$25k	$0-$5k	Proof-of-Concept	Not Defined	0.00	CVE-2007-4617
2007-05-23	7.5	7.1	BEA WebLogic Server Administration Console Privilege Escalation	$25k-$100k	$0-$5k	Proof-of-Concept	Not Defined	0.00	CVE-2007-2699
2007-05-14	7.8	6.8	BEA Weblogic Workshop information disclosure	$5k-$25k	$0-$5k	Proof-of-Concept	Official Fix	0.00	CVE-2007-5576
2007-05-14	7.5	7.1	BEA WebLogic Workshop Console directory traversal	$5k-$25k	$0-$5k	Proof-of-Concept	Not Defined	0.00	CVE-2007-2705

201 więcej wpisów nie jest pokazywanych

🔒 Login Required

You need to signup and login to see more of the remaining 201 results.

więcej wpisów autorstwa Bea

◂ PoprzedniPrzeglądKolejny ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!