2.1

CVE-2003-1437

BEA WebLogic Express and WebLogic Server 7.0 and 7.0.0.1, stores passwords in plaintext when a keystore is used to store a private key or trust certificate authorities, which allows local users to gain access.

Data is provided by the National Vulnerability Database (NVD)
BeaWeblogic Server Version7.0 Editionexpress
   HpHp-ux Version11.00
   HpHp-ux Version11.11i Updatev1
   IbmAix Version4.3.3
   MicrosoftWindows 2000
   MicrosoftWindows Nt
   RedhatLinux Version6.2 Editioni386
   RedhatLinux Version7.1 Editioni386
   SunSolaris Version2.6
   SunSunos Version5.7
   SunSunos Version5.8
BeaWeblogic Server Version7.0 Updatesp1 Editionexpress
   HpHp-ux Version11.00
   HpHp-ux Version11.11i Updatev1
   IbmAix Version4.3.3
   MicrosoftWindows 2000
   MicrosoftWindows Nt
   RedhatLinux Version6.2 Editioni386
   RedhatLinux Version7.1 Editioni386
   SunSolaris Version2.6
   SunSunos Version5.7
   SunSunos Version5.8
BeaWeblogic Server Version7.0.0.1 Editionexpress
   HpHp-ux Version11.00
   HpHp-ux Version11.11i Updatev1
   IbmAix Version4.3.3
   MicrosoftWindows 2000
   MicrosoftWindows Nt
   RedhatLinux Version6.2 Editioni386
   RedhatLinux Version7.1 Editioni386
   SunSolaris Version2.6
   SunSunos Version5.7
   SunSunos Version5.8
BeaWeblogic Server Version7.0.0.1 Updatesp1 Editionexpress
   HpHp-ux Version11.00
   HpHp-ux Version11.11i Updatev1
   IbmAix Version4.3.3
   MicrosoftWindows 2000
   MicrosoftWindows Nt
   RedhatLinux Version6.2 Editioni386
   RedhatLinux Version7.1 Editioni386
   SunSolaris Version2.6
   SunSunos Version5.7
   SunSunos Version5.8
BeaWeblogic Server Version7.0
   HpHp-ux Version11.00
   HpHp-ux Version11.11i
   IbmAix Version4.3.3
   MicrosoftWindows 2000
   MicrosoftWindows Nt
   RedhatLinux Version6.2 Editioni386
   RedhatLinux Version7.1 Editioni386
   SunSolaris Version2.6
   SunSunos Version5.7
   SunSunos Version5.8
BeaWeblogic Server Version7.0 Updatesp1
   HpHp-ux Version11.00
   HpHp-ux Version11.11i
   IbmAix Version4.3.3
   MicrosoftWindows 2000
   MicrosoftWindows Nt
   RedhatLinux Version6.2 Editioni386
   RedhatLinux Version7.1 Editioni386
   SunSolaris Version2.6
   SunSunos Version5.7
   SunSunos Version5.8
BeaWeblogic Server Version7.0.0.1
   HpHp-ux Version11.00
   HpHp-ux Version11.11i
   IbmAix Version4.3.3
   MicrosoftWindows 2000
   MicrosoftWindows Nt
   RedhatLinux Version6.2 Editioni386
   RedhatLinux Version7.1 Editioni386
   SunSolaris Version2.6
   SunSunos Version5.7
   SunSunos Version5.8
BeaWeblogic Server Version7.0.0.1 Updatesp1
   HpHp-ux Version11.00
   HpHp-ux Version11.11i
   IbmAix Version4.3.3
   MicrosoftWindows 2000
   MicrosoftWindows Nt
   RedhatLinux Version6.2 Editioni386
   RedhatLinux Version7.1 Editioni386
   SunSolaris Version2.6
   SunSunos Version5.7
   SunSunos Version5.8
BeaWeblogic Server Version7.0
BeaWeblogic Server Version7.0 Updatesp1
BeaWeblogic Server Version7.0.0.1
BeaWeblogic Server Version7.0.0.1 Updatesp1
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 0.03% 0.068
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 2.1 3.9 2.9
AV:L/AC:L/Au:N/C:N/I:P/A:N