Description
BEA AquaLogic Enterprise Security 2.0 through 2.0 SP2, 2.1 through 2.1 SP1, and 2.2 does not properly set the severity level of audit events when the system load is high, which might make it easier for attackers to avoid detection.
References (4)
Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/22082
Vendor Advisory vendor-advisory
x_refsource_bea
http://dev2dev.bea.com/pub/advisory/220
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/23786
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/32860
Scores
EPSS
0.0009
EPSS Percentile
25.0%
Details
Status
published
Products (3)
bea/aqualogic_enterprise_security
2.0 (3 CPE variants)
bea/aqualogic_enterprise_security
2.1 (2 CPE variants)
bea/aqualogic_enterprise_security
2.2
Published
Jan 23, 2007
Tracked Since
Feb 18, 2026