cbcvebase.
CVE-2006-0427
published 2006-01-25

CVE-2006-0427: Unspecified vulnerability in BEA WebLogic Server and WebLogic Express 9.0 and 8.1 through SP5 allows malicious EJBs or servlet applications to decrypt system…

PriorityP47low2.1CVSS 2.0
AVLACLAuNCPINAN
EPSS
0.36%
28.0th percentile
Unspecified vulnerability in BEA WebLogic Server and WebLogic Express 9.0 and 8.1 through SP5 allows malicious EJBs or servlet applications to decrypt system passwords, possibly by accessing functionality that should have been restricted.

Affected

2 ranges
VendorProductVersion rangeFixed in
beaweblogic_server
beaweblogic_server
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.