CVE-2003-1223Weblogic Server vulnerability

3 documents3 sources
Severity
5.0MEDIUMNVD
EPSS
0.5%
top 34.42%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
BEA Weblogic Server
Timeline
PublishedDec 31
Latest updateApr 29

Description

The Node Manager for BEA WebLogic Express and Server 6.1 through 8.1 SP 1 allows remote attackers to cause a denial of service (Node Manager crash) via malformed data to the Node Manager's port, as demonstrated by nmap.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

NVDbea/weblogic_server4 versions+3

Patches

Patch: www.securityfocus.comPatch: www.securityfocus.com

🔴Vulnerability Details

2
GHSA
GHSA-p2c7-wf9f-vf9p: The Node Manager for BEA WebLogic Express and Server 62022-04-29
CVEList
CVE-2003-1223: The Node Manager for BEA WebLogic Express and Server 62005-08-16
CVE-2003-1223 — BEA Weblogic Server vulnerability | cvebase