2.1
CVE-2006-0427
- EPSS 0.08%
- Published 25.01.2006 23:07:00
- Last modified 03.04.2025 01:03:51
- Source cve@mitre.org
- Teams watchlist Login
- Open Login
Unspecified vulnerability in BEA WebLogic Server and WebLogic Express 9.0 and 8.1 through SP5 allows malicious EJBs or servlet applications to decrypt system passwords, possibly by accessing functionality that should have been restricted.
Data is provided by the National Vulnerability Database (NVD)
Bea ≫ Weblogic Server Version8.1 Updatesp1
Bea ≫ Weblogic Server Version8.1 Updatesp1 Editionexpress
Bea ≫ Weblogic Server Version8.1 Updatesp2
Bea ≫ Weblogic Server Version8.1 Updatesp2 Editionexpress
Bea ≫ Weblogic Server Version8.1 Updatesp3
Bea ≫ Weblogic Server Version8.1 Updatesp3 Editionexpress
Bea ≫ Weblogic Server Version8.1 Updatesp4
Bea ≫ Weblogic Server Version8.1 Updatesp4 Editionexpress
Bea ≫ Weblogic Server Version8.1 Updatesp5
Bea ≫ Weblogic Server Version8.1 Updatesp5 Editionexpress
Bea ≫ Weblogic Server Version9.0 Updatesp1
Bea ≫ Weblogic Server Version9.0 Updatesp1 Editionexpress
Bea ≫ Weblogic Server Version9.0 Updatesp2
Bea ≫ Weblogic Server Version9.0 Updatesp2 Editionexpress
Bea ≫ Weblogic Server Version9.0 Updatesp3
Bea ≫ Weblogic Server Version9.0 Updatesp3 Editionexpress
Bea ≫ Weblogic Server Version9.0 Updatesp4
Bea ≫ Weblogic Server Version9.0 Updatesp4 Editionexpress
Bea ≫ Weblogic Server Version9.0 Updatesp5
Bea ≫ Weblogic Server Version9.0 Updatesp5 Editionexpress
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.08% | 0.202 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 2.1 | 3.9 | 2.9 |
AV:L/AC:L/Au:N/C:P/I:N/A:N
|