CVE-2009-1974Oracle BEA Product Suite vulnerability

3 documents3 sources
Severity
6.8MEDIUMNVD
EPSS
0.8%
top 25.86%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Oracle BEA Product Suite
Timeline
PublishedJul 14
Latest updateMay 2

Description

Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 10.3, 10.0 MP1, 9.2 MP3, 9.1, 9.0, 8.1 SP6, and 7.0 SP7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to the Servlet Container Package.

CVSS vector

AV:N/AC:M/C:P/I:P/A:PExploitability: 8.6 | Impact: 6.4

Affected Packages1 packages

NVDoracle/bea_product_suite7 versions+6

🔴Vulnerability Details

2
GHSA
GHSA-mh54-522r-8782: Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 102022-05-02
CVEList
CVE-2009-1974: Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 102009-07-14
CVE-2009-1974 — Oracle BEA Product Suite vulnerability | cvebase