CVE-2008-0903

EPSS 0.52%
Published 22.02.2008 21:44:00
Last modified 09.04.2025 00:30:58
Source cve@mitre.org
Teams watchlist Login
Open Login

Unspecified vulnerability in the BEA WebLogic Server and Express proxy plugin, as distributed before November 2007 and before 9.2 MP3 and 10.0 MP2, allows remote attackers to cause a denial of service (web server crash) via a crafted URL.

Affected products Warnungen 0 Metrics 2 CWE 0 References 7

Data is provided by the National Vulnerability Database (NVD)

Bea Systems ≫ Weblogic Express Updatemp2 Version <= 10.0

Bea Systems ≫ Weblogic Server Updatemp2 Version <= 10.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.52%	0.641

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	4.3	8.6	2.9	AV:N/AC:M/Au:N/C:N/I:N/A:P

http://secunia.com/advisories/29041

http://dev2dev.bea.com/pub/advisory/275

Patch

http://www.securitytracker.com/id?1019450

http://www.vupen.com/english/advisories/2008/0608/references

https://nvd.nist.gov/vuln/detail/CVE-2008-0903

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2008-0903

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2008-0903

EUVD