2.1
CVE-2006-0432
- EPSS 0.36%
- Veröffentlicht 25.01.2006 23:07:00
- Zuletzt bearbeitet 16.06.2026 22:20:35
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Unspecified vulnerability in BEA WebLogic Server and WebLogic Express 9.0, when an Administrator uses the WebLogic Administration Console to add custom security policies, causes incorrect policies to be created, which prevents the server from properly protecting JNDI resources.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Bea ≫ Weblogic Server Version9.0
Bea ≫ Weblogic Server Version9.0 Editionexpress
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.36% | 0.275 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 2.1 | 3.9 | 2.9 |
AV:L/AC:L/Au:N/C:N/I:P/A:N
|
http://securitytracker.com/id?1015528
http://www.securityfocus.com/bid/16358
http://www.vupen.com/english/advisories/2006/0313
http://secunia.com/advisories/18592
http://dev2dev.bea.com/pub/advisory/176
https://exchange.xforce.ibmcloud.com/vulnerabilities/24299