bea
158 tracked vulnerabilities.
CVE-2010-2375
Oracle Fusion Middleware - Confidentiality Integrity
Jul 13, 2010
EPSS 0.16
CVE-2008-3257
Oracle WebLogic Server <10.3 - Buffer Overflow
Jul 22, 2008
EPSS 0.81
CVE-2008-0895
BEA WebLogic Server 6.1-10.0 - Unauthenticated Authentication Bypass via Crafted Request Headers
Feb 22, 2008
EPSS 0.00
CVE-2008-0897
BEA WebLogic Server 9.0-10.0 - Authenticated Access Bypass in JMS Topic Subscriptions
Feb 22, 2008
EPSS 0.00
CVE-2008-0898
BEA WebLogic Server 9.0-10.0 - Authenticated Access Restriction Bypass in JMS Distributed Queue
Feb 22, 2008
EPSS 0.00
CVE-2008-0899
BEA WebLogic Server 9.0-10.0 - Cross-Site Scripting via Unexpected Exception Page
Feb 22, 2008
EPSS 0.00
CVE-2008-0900
BEA WebLogic Server and Express 8.1 SP4-SP6, 9.2-MP1, 10.0 - Authenticated Session Fixation
Feb 22, 2008
EPSS 0.05
CVE-2008-0901
BEA WebLogic Server 7.0-10.0 - Unauthenticated Password Brute-Force via URL Response
Feb 22, 2008
EPSS 0.01
CVE-2008-0902
BEA Weblogic Server - XSS
Feb 22, 2008
EPSS 0.00
CVE-2008-0863
BEA WebLogic Server/Express 9.0/9.1 - Unauthenticated Sensitive Information Exposure via WSDL
Feb 21, 2008
EPSS 0.00
CVE-2008-0866
BEA WebLogic Workshop - Cross-Site Scripting via Invalid Action URI
Feb 21, 2008
EPSS 0.00
CVE-2008-0869
BEA WebLogic Workshop 8.1 SP6-10.0 - Cross-Site Scripting via Framework Request Parameter
Feb 21, 2008
EPSS 0.00
CVE-2007-6384
BEA WebLogic Mobility Server <3.6 - Info Disclosure
Dec 15, 2007
EPSS 0.01
CVE-2007-6197
BEA AquaLogic Interaction <6.0.1.218452 - Info Disclosure
Dec 01, 2007
EPSS 0.01
CVE-2007-6198
BEA AquaLogic Interaction <6.0.1.218452 - Info Disclosure
Dec 01, 2007
EPSS 0.06
CVE-2007-5576
BEA Tuxedo 8.0-8.1 and WebLogic Enterprise 5.1 - Cleartext Password Exposure via cnsbind/cnsunbind/cnsls Commands
Oct 18, 2007
EPSS 0.01
CVE-2007-4613
BEA WebLogic Server - Info Disclosure
Aug 31, 2007
EPSS 0.01
CVE-2007-4614
BEA WebLogic Server 9.1 - Auth Bypass
Aug 31, 2007
EPSS 0.01
CVE-2007-4615
BEA WebLogic Server - Info Disclosure
Aug 31, 2007
EPSS 0.01
CVE-2007-4616
BEA WebLogic Server - Info Disclosure
Aug 31, 2007
EPSS 0.01
CVE-2007-4617
BEA WebLogic Server 6.1-8.1 - Denial of Service
Aug 31, 2007
EPSS 0.02
CVE-2007-4618
BEA WebLogic Server 6.1-7.0 SP7 - Denial of Service via Malformed HTTP Headers
Aug 31, 2007
EPSS 0.02
CVE-2007-2694
BEA WebLogic Express/WebLogic Server - XSS
May 16, 2007
EPSS 0.01
CVE-2007-2695
BEA WebLogic Express/WebLogic Server <9.2 - Privilege Escalation
May 16, 2007
EPSS 0.02
CVE-2007-2696
BEA WebLogic Server <8.1 - Info Disclosure
May 16, 2007
EPSS 0.02