Oracle Bea Product Suite vulnerabilities

32 known vulnerabilities affecting oracle/bea_product_suite.

Total CVEs
32
CISA KEV
0
Public exploits
3
Exploited in wild
0
Severity breakdown
CRITICAL5HIGH1MEDIUM24LOW2

Vulnerabilities

Page 2 of 2
CVE-2008-5461MEDIUMCVSS 6.8v7.0v8.1+5 more2009-01-14
CVE-2008-5461 [MEDIUM] CWE-200 CVE-2008-5461: Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 10.3, 10.0 MP1, 9.2 Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 10.3, 10.0 MP1, 9.2 MP3, 9.1, 9.0, 8.1 SP6, 7.0, and SP7 allows remote attackers to affect confidentiality, integrity, and availability, related to WLS. NOTE: the previous information was obtained from the January 2009 CPU. Oracle has not commented on reliable researcher cl
nvd
CVE-2008-5459MEDIUMCVSS 5.0v10.32009-01-14
CVE-2008-5459 [MEDIUM] CWE-264 CVE-2008-5459: Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 10.3 allows remote a Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 10.3 allows remote attackers to affect confidentiality via unknown vectors.
nvd
CVE-2008-5462MEDIUMCVSS 6.8v8.1v9.2+3 more2009-01-14
CVE-2008-5462 [MEDIUM] CWE-264 CVE-2008-5462: Unspecified vulnerability in the WebLogic Portal component in BEA Product Suite 10.3, 10.2, 10.0 MP1 Unspecified vulnerability in the WebLogic Portal component in BEA Product Suite 10.3, 10.2, 10.0 MP1, 9.2 MP3, and 8.1 SP6 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.
nvd
CVE-2008-5460LOWCVSS 2.6v9.0v9.1+3 more2009-01-14
CVE-2008-5460 [LOW] CWE-200 CVE-2008-5460: Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 10.3, 10.0 MP1, 9.2 Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 10.3, 10.0 MP1, 9.2 MP3, 9.1, and 9.0 allows remote attackers to affect confidentiality via unknown vectors.
nvd
CVE-2008-4008CRITICALCVSS 10.0PoCv6.1v7.0+6 more2008-10-14
CVE-2008-4008 [CRITICAL] CVE-2008-4008: Unspecified vulnerability in the WebLogic Server Plugins for Apache component in BEA Product Suite 1 Unspecified vulnerability in the WebLogic Server Plugins for Apache component in BEA Product Suite 10.3, 10.0 MP1, 9.2 MP3, 9.1, 9.0, 8.1 SP6, 7.0 SP7, and 6.1 SP7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the October 2008 CPU. Oracle has not commented
nvd
CVE-2008-4009MEDIUMCVSS 5.1v9.12008-10-14
CVE-2008-4009 [MEDIUM] CVE-2008-4009: Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 9.1, when configurin Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 9.1, when configuring multiple authorizers, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.
nvd
CVE-2008-4010MEDIUMCVSS 6.8v8.1v9.2+3 more2008-10-14
CVE-2008-4010 [MEDIUM] CVE-2008-4010: Unspecified vulnerability in the WebLogic Workshop component in BEA Product Suite 10.3, 10.2, 10.0 M Unspecified vulnerability in the WebLogic Workshop component in BEA Product Suite 10.3, 10.2, 10.0 MP1, 9.2 MP3, and 8.1 SP6 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to "some NetUI tags."
nvd
CVE-2008-4013MEDIUMCVSS 6.8v8.1v9.0+3 more2008-10-14
CVE-2008-4013 [MEDIUM] CVE-2008-4013: Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 10.0 MP1, 9.2 MP3, 9 Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 10.0 MP1, 9.2 MP3, 9.1, 9.0, and 8.1 SP6 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.
nvd
CVE-2008-4011LOWCVSS 2.1v9.0v9.1+2 more2008-10-14
CVE-2008-4011 [LOW] CVE-2008-4011: Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 10.0 MP1, 9.2 MP3, 9 Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 10.0 MP1, 9.2 MP3, 9.1, and 9.0 allows remote authenticated users to affect integrity via unknown vectors.
nvd
CVE-2008-2580MEDIUMCVSS 5.0v9.0v9.1+2 more2008-07-15
CVE-2008-2580 [MEDIUM] CVE-2008-2580: Unspecified vulnerability in the WebLogic Server component in Oracle BEA Product Suite 10.0 MP1, 9.2 Unspecified vulnerability in the WebLogic Server component in Oracle BEA Product Suite 10.0 MP1, 9.2 MP3, 9.1, and 9.0 has unknown impact and remote attack vectors.
nvd
CVE-2008-2582MEDIUMCVSS 5.0v7.0v8.1+4 more2008-07-15
CVE-2008-2582 [MEDIUM] CVE-2008-2582: Unspecified vulnerability in the WebLogic Server component in Oracle BEA Product Suite 10.0 MP1, 9.2 Unspecified vulnerability in the WebLogic Server component in Oracle BEA Product Suite 10.0 MP1, 9.2 MP3, 9.1, 9.0, 8.1 SP6, and 7.0 SP7 has unknown impact and remote attack vectors.
nvd
CVE-2008-2581MEDIUMCVSS 5.1v7.0v8.1+4 more2008-07-15
CVE-2008-2581 [MEDIUM] CVE-2008-2581: Unspecified vulnerability in the WebLogic Server component in Oracle BEA Product Suite 10.0 MP1, 9.2 Unspecified vulnerability in the WebLogic Server component in Oracle BEA Product Suite 10.0 MP1, 9.2 MP3, 9.1, 9.0, 8.1 SP6, and 7.0 SP7 has unknown impact and remote attack vectors related to UDDI Explorer.
nvd
← Previous2 / 2