CVE-2009-1003

2009-04-1510:30:00

oracle

web.nvd.nist.gov

cve-2009-1003

weblogic server

bea

product suite

vulnerability

integrity

remote attackers

nvd

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

AI Score

6.8

Confidence

Low

EPSS

0.008

Percentile

81.5%

JSON

Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 10.3, 10.0 MP1, 9.2 MP3, 9.1, and 9.0 allows remote attackers to affect integrity via unknown vectors related to “access to source code of web pages.”

Affected configurations

Nvd

Node

oraclebea_product_suiteMatch9.0

oraclebea_product_suiteMatch9.1

oraclebea_product_suiteMatch9.2mp3

oraclebea_product_suiteMatch10.0mp1

oraclebea_product_suiteMatch10.3

VendorProductVersionCPE
oraclebea_product_suite9.0cpe:2.3:a:oracle:bea_product_suite:9.0:*:*:*:*:*:*:*
oraclebea_product_suite9.1cpe:2.3:a:oracle:bea_product_suite:9.1:*:*:*:*:*:*:*
oraclebea_product_suite9.2cpe:2.3:a:oracle:bea_product_suite:9.2:mp3:*:*:*:*:*:*
oraclebea_product_suite10.0cpe:2.3:a:oracle:bea_product_suite:10.0:mp1:*:*:*:*:*:*
oraclebea_product_suite10.3cpe:2.3:a:oracle:bea_product_suite:10.3:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
oracle	bea_product_suite	9.0	cpe:2.3:a:oracle:bea_product_suite:9.0:::::::*
oracle	bea_product_suite	9.1	cpe:2.3:a:oracle:bea_product_suite:9.1:::::::*
oracle	bea_product_suite	9.2	cpe:2.3:a:oracle:bea_product_suite:9.2:mp3::::::
oracle	bea_product_suite	10.0	cpe:2.3:a:oracle:bea_product_suite:10.0:mp1::::::
oracle	bea_product_suite	10.3	cpe:2.3:a:oracle:bea_product_suite:10.3:::::::*