6.5
CVE-2007-0433
- EPSS 1.21%
- Veröffentlicht 23.01.2007 02:28:00
- Zuletzt bearbeitet 16.06.2026 22:35:33
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Unspecified vulnerability in BEA AquaLogic Enterprise Security 2.0 through 2.0 SP2, 2.1 through 2.1 SP1, and 2.2, when using Active Directory LDAP for authentication, allows remote authenticated users to access the server even after the account has been disabled.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Bea ≫ Aqualogic Service Bus Version2.0
Bea ≫ Aqualogic Service Bus Version2.0 Updatesp1
Bea ≫ Aqualogic Service Bus Version2.0 Updatesp2
Bea ≫ Aqualogic Service Bus Version2.1
Bea ≫ Aqualogic Service Bus Version2.1 Updatesp1
Bea ≫ Aqualogic Service Bus Version2.2
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.21% | 0.644 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 6.5 | 8 | 6.4 |
AV:N/AC:L/Au:S/C:P/I:P/A:P
|
http://www.securityfocus.com/bid/22082
http://secunia.com/advisories/23786
http://dev2dev.bea.com/pub/advisory/221
http://osvdb.org/32861
http://securitytracker.com/id?1017524