CVE-2008-4009

3 documents3 sources

Severity

5.1MEDIUM

EPSS

0.9%

top 25.00%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Oracle BEA Product Suite

Timeline

PublishedOct 14

Latest updateMay 2

Description

Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 9.1, when configuring multiple authorizers, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.

CVSS vector

AV:N/AC:H/C:P/I:P/A:PExploitability: 4.9 | Impact: 6.4

Affected Packages1 packages

▶NVDoracle/bea_product_suite9.1

🔴Vulnerability Details

GHSA

GHSA-q9c8-qxp9-6jcr: Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 9↗2022-05-02

▶

CVEList

CVE-2008-4009: Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 9↗2008-10-14

▶