5
CVE-2006-2461
- EPSS 2.11%
- Veröffentlicht 19.05.2006 10:02:00
- Zuletzt bearbeitet 16.06.2026 22:25:03
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
BEA WebLogic Server before 8.1 Service Pack 4 does not properly set the Quality of Service in certain circumstances, which prevents some transmissions from being encrypted via SSL, and allows remote attackers to more easily read potentially sensitive network traffic.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Bea ≫ Weblogic Server Version8.1
Bea ≫ Weblogic Server Version8.1 Updatesp1
Bea ≫ Weblogic Server Version8.1 Updatesp2
Bea ≫ Weblogic Server Version8.1 Updatesp3
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 2.11% | 0.793 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:P/I:N/A:N
|
http://dev2dev.bea.com/pub/advisory/194
http://secunia.com/advisories/20130
http://securitytracker.com/id?1016102
http://www.vupen.com/english/advisories/2006/1828
https://exchange.xforce.ibmcloud.com/vulnerabilities/26459