Bea Weblogic Server vulnerabilities
146 known vulnerabilities affecting bea/weblogic_server.
Total CVEs
146
CISA KEV
0
Public exploits
12
Exploited in wild
0
Severity breakdown
CRITICAL7HIGH31MEDIUM92LOW16
Vulnerabilities
Page 3 of 8
CVE-2007-4616P4MEDIUMCVSS 6.4v7.0v8.1+4 more2007-08-31
CVE-2007-4616 [MEDIUM] CVE-2007-4616: The SSL server implementation in BEA WebLogic Server 7.0 Gold through SP7, 8.1 Gold through SP6, 9.0
The SSL server implementation in BEA WebLogic Server 7.0 Gold through SP7, 8.1 Gold through SP6, 9.0, 9.1, 9.2 Gold through MP1, and 10.0 sometimes selects the null cipher when no other cipher is compatible between the server and client, which might allow remote attackers to intercept communications.
nvd
CVE-2007-0411P4MEDIUMCVSS 6.8≤ 8.1v8.1+3 more2007-01-23
CVE-2007-0411 [MEDIUM] CVE-2007-0411: BEA WebLogic Server 8.1 through 8.1 SP5, 9.0, 9.1, and 9.2 Gold, when WS-Security is used, does not
BEA WebLogic Server 8.1 through 8.1 SP5, 9.0, 9.1, and 9.2 Gold, when WS-Security is used, does not properly validate certificates, which allows remote attackers to conduct a man-in-the-middle (MITM) attack.
nvd
CVE-2004-0470P4HIGHCVSS 7.5v7.0v8.12004-07-07
CVE-2004-0470 [HIGH] CVE-2004-0470: BEA WebLogic Server and WebLogic Express 7.0 through SP5 and 8.1 through SP2, when editing weblogic.
BEA WebLogic Server and WebLogic Express 7.0 through SP5 and 8.1 through SP2, when editing weblogic.xml using WebLogic Builder or the SecurityRoleAssignmentMBean.toXML method, inadvertently removes security-role-assignment tags when weblogic.xml does not have a principal-name tag, which can remove intended access restrictions for the associated web application.
nvd
CVE-2007-2695P4MEDIUMCVSS 5.1v6.1v7.0+3 more2007-05-16
CVE-2007-2695 [MEDIUM] CVE-2007-2695: The HttpClusterServlet and HttpProxyServlet in BEA WebLogic Express and WebLogic Server 6.1 through
The HttpClusterServlet and HttpProxyServlet in BEA WebLogic Express and WebLogic Server 6.1 through SP7, 7.0 through SP7, 8.1 through SP5, 9.0, and 9.1, when SecureProxy is enabled, may process "external requests on behalf of a system identity," which allows remote attackers to access administrative data or functionality.
nvd
CVE-2005-1743P4HIGHCVSS 7.5v6.0v6.1+3 more2005-05-24
CVE-2005-1743 [HIGH] CVE-2005-1743: BEA WebLogic Server and WebLogic Express 8.1 through Service Pack 3 and 7.0 through Service Pack 5 d
BEA WebLogic Server and WebLogic Express 8.1 through Service Pack 3 and 7.0 through Service Pack 5 does not properly handle when a security provider throws an exception, which may cause WebLogic to use incorrect identity for the thread, or to fail to audit security exceptions.
nvd
CVE-2000-1238P4HIGHCVSS 7.5v5.12000-12-31
CVE-2000-1238 [HIGH] CVE-2000-1238: BEA Systems WebLogic Express and WebLogic Server 5.1 SP1-SP6 allows remote attackers to bypass acces
BEA Systems WebLogic Express and WebLogic Server 5.1 SP1-SP6 allows remote attackers to bypass access controls for restricted JSP or servlet pages via a URL with multiple / (forward slash) characters before the restricted pages.
nvd
CVE-2002-2141P4HIGHCVSS 7.5v7.0v7.0.0.12002-12-31
CVE-2002-2141 [HIGH] CVE-2002-2141: BEA WebLogic Server and Express 7.0 and 7.0.0.1, when running Servlets and Enterprise JavaBeans (EJB
BEA WebLogic Server and Express 7.0 and 7.0.0.1, when running Servlets and Enterprise JavaBeans (EJB) on more than one server, will remove the security constraints and roles on all servers for any Servlets or EJB that are used by an application that is undeployed on one server, which could allow remote attackers to conduct unauthorized activities in violation o
nvd
CVE-2005-4750P4HIGHCVSS 7.5v6.1v7.0+1 more2005-12-31
CVE-2005-4750 [HIGH] CVE-2005-4750: BEA WebLogic Server and WebLogic Express 8.1 SP4 and earlier, 7.0 SP5 and earlier, and 6.1 SP7 and e
BEA WebLogic Server and WebLogic Express 8.1 SP4 and earlier, 7.0 SP5 and earlier, and 6.1 SP7 and earlier allow remote attackers to cause a denial of service (server thread hang) via unknown attack vectors.
nvd
CVE-2005-4767P4MEDIUMCVSS 5.1v7.0v8.12005-12-31
CVE-2005-4767 [MEDIUM] CVE-2005-4767: BEA WebLogic Server and WebLogic Express 8.1 SP5 and earlier, and 7.0 SP6 and earlier, when using us
BEA WebLogic Server and WebLogic Express 8.1 SP5 and earlier, and 7.0 SP6 and earlier, when using username/password authentication, does not lock out a username after the maximum number of invalid login attempts, which makes it easier for remote attackers to guess the password.
nvd
CVE-2006-2546P4MEDIUMCVSS 5.0v8.12006-05-23
CVE-2006-2546 [MEDIUM] CVE-2006-2546: A recommended admin password reset mechanism for BEA WebLogic Server 8.1, when followed before Octob
A recommended admin password reset mechanism for BEA WebLogic Server 8.1, when followed before October 10, 2005, causes the administrator password to be stored in cleartext in the domain directory, which could allow attackers to gain privileges.
nvd
CVE-2005-1747P4MEDIUMCVSS 6.8v6.0v6.1+3 more2005-05-24
CVE-2005-1747 [MEDIUM] CVE-2005-1747: Multiple cross-site scripting (XSS) vulnerabilities in BEA WebLogic Server and Express 8.1 through S
Multiple cross-site scripting (XSS) vulnerabilities in BEA WebLogic Server and Express 8.1 through Service Pack 4, and 7.0 through Service Pack 6, allow remote attackers to inject arbitrary web script or HTML, and possibly gain administrative privileges, via the (1) j_username or (2) j_password parameters in the login page (LoginForm.jsp), (3) parameters to t
nvd
CVE-2007-0412P4MEDIUMCVSS 5.0v6.1v7.0+1 more2007-01-23
CVE-2007-0412 [MEDIUM] CVE-2007-0412: BEA WebLogic Server 6.1 through 6.1 SP7, 7.0 through 7.0 SP7, and 8.1 through 8.1 SP5 allows remote
BEA WebLogic Server 6.1 through 6.1 SP7, 7.0 through 7.0 SP7, and 8.1 through 8.1 SP5 allows remote attackers to read arbitrary files inside the class-path property via .ear or exploded .ear files that use the manifest class-path property to point to utility jar files.
nvd
CVE-2006-1351P4MEDIUMCVSS 5.0v6.12006-03-22
CVE-2006-1351 [MEDIUM] CVE-2006-1351: BEA WebLogic Server 6.1 SP7 and earlier allows remote attackers to read arbitrary files via unknown
BEA WebLogic Server 6.1 SP7 and earlier allows remote attackers to read arbitrary files via unknown attack vectors related to a "default internal servlet" accessed through HTTP.
nvd
CVE-2007-4613P4MEDIUMCVSS 6.8v6.0v6.1+2 more2007-08-31
CVE-2007-4613 [MEDIUM] CVE-2007-4613: SSL libraries in BEA WebLogic Server 6.1 Gold through SP7, 7.0 Gold through SP7, and 8.1 Gold throug
SSL libraries in BEA WebLogic Server 6.1 Gold through SP7, 7.0 Gold through SP7, and 8.1 Gold through SP5 might allow remote attackers to obtain plaintext from an SSL stream via a man-in-the-middle attack that injects crafted data and measures the elapsed time before an error response, a different vulnerability than CVE-2006-2461.
nvd
CVE-2006-0422P4MEDIUMCVSS 6.4v6.1v7.0+1 more2006-01-25
CVE-2006-0422 [MEDIUM] CVE-2006-0422: Multiple unspecified vulnerabilities in BEA WebLogic Server and WebLogic Express 8.1 through SP4, 7.
Multiple unspecified vulnerabilities in BEA WebLogic Server and WebLogic Express 8.1 through SP4, 7.0 through SP6, and 6.1 through SP7 allow remote attackers to access MBean attributes or cause an unspecified denial of service via unknown attack vectors.
nvd
CVE-2007-2697P4MEDIUMCVSS 5.1v7.0v8.1+2 more2007-05-16
CVE-2007-2697 [MEDIUM] CVE-2007-2697: The embedded LDAP server in BEA WebLogic Express and WebLogic Server 7.0 through SP6, 8.1 through SP
The embedded LDAP server in BEA WebLogic Express and WebLogic Server 7.0 through SP6, 8.1 through SP5, 9.0, and 9.1, when in certain configurations, does not limit or audit failed authentication attempts, which allows remote attackers to more easily conduct brute-force attacks against the administrator password, or flood the server with login attempts and cau
nvd
CVE-2007-2701P4MEDIUMCVSS 4.6v7.0v8.12007-05-16
CVE-2007-2701 [MEDIUM] CVE-2007-2701: The JMS Message Bridge in BEA WebLogic Server 7.0 through SP7 and 8.1 through Service Pack 6, when c
The JMS Message Bridge in BEA WebLogic Server 7.0 through SP7 and 8.1 through Service Pack 6, when configured without a username and password, or when the connection URL is not defined, allows remote attackers to bypass the security access policy and "send unauthorized messages to a protected queue."
nvd
CVE-2000-0499P4HIGHCVSS 7.5≥ 3.1.8, ≤ 4.5.12000-06-08
CVE-2000-0499 [HIGH] CWE-178 CVE-2000-0499: The default configuration of BEA WebLogic 3.1.8 through 4.5.1 allows a remote attacker to view sourc
The default configuration of BEA WebLogic 3.1.8 through 4.5.1 allows a remote attacker to view source code of a JSP program by requesting a URL which provides the JSP extension in upper case.
nvd
CVE-2004-0715P4MEDIUMCVSS 5.1v7.0v8.12004-07-27
CVE-2004-0715 [MEDIUM] CVE-2004-0715: The WebLogic Authentication provider for BEA WebLogic Server and WebLogic Express 8.1 through SP2 an
The WebLogic Authentication provider for BEA WebLogic Server and WebLogic Express 8.1 through SP2 and 7.0 through SP4 does not properly clear member relationships when a group is deleted, which can cause a new group with the same name to have the members of the old group, which allows group members to gain privileges.
nvd
CVE-2005-4749P4MEDIUMCVSS 5.0v6.1v7.0+1 more2005-12-31
CVE-2005-4749 [MEDIUM] CVE-2005-4749: HTTP request smuggling vulnerability in BEA WebLogic Server and WebLogic Express 8.1 SP4 and earlier
HTTP request smuggling vulnerability in BEA WebLogic Server and WebLogic Express 8.1 SP4 and earlier, 7.0 SP6 and earlier, and 6.1 SP7 and earlier allows remote attackers to inject arbitrary HTTP headers via unspecified attack vectors.
nvd