ID |
CVE-2008-4010
|
Summary |
Unspecified vulnerability in the WebLogic Workshop component in BEA Product Suite 10.3, 10.2, 10.0 MP1, 9.2 MP3, and 8.1 SP6 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to "some NetUI tags." |
References |
|
Vulnerable Configurations |
-
cpe:2.3:a:oracle:bea_product_suite:8.1:sp6:*:*:*:*:*:*
cpe:2.3:a:oracle:bea_product_suite:8.1:sp6:*:*:*:*:*:*
-
cpe:2.3:a:oracle:bea_product_suite:9.2:mp3:*:*:*:*:*:*
cpe:2.3:a:oracle:bea_product_suite:9.2:mp3:*:*:*:*:*:*
-
cpe:2.3:a:oracle:bea_product_suite:10.0:mp1:*:*:*:*:*:*
cpe:2.3:a:oracle:bea_product_suite:10.0:mp1:*:*:*:*:*:*
-
cpe:2.3:a:oracle:bea_product_suite:10.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:bea_product_suite:10.2:*:*:*:*:*:*:*
-
cpe:2.3:a:oracle:bea_product_suite:10.3:*:*:*:*:*:*:*
cpe:2.3:a:oracle:bea_product_suite:10.3:*:*:*:*:*:*:*
|
CVSS |
Base: | 6.8 (as of 08-08-2017 - 01:32) |
Impact: | |
Exploitability: | |
|
CWE |
NVD-CWE-noinfo |
CAPEC |
|
Access |
Vector | Complexity | Authentication |
NETWORK |
MEDIUM |
NONE |
|
Impact |
Confidentiality | Integrity | Availability |
PARTIAL |
PARTIAL |
PARTIAL |
|
cvss-vector
via4
|
AV:N/AC:M/Au:N/C:P/I:P/A:P
|
refmap
via4
|
confirm | | sectrack | 1021056 | secunia | 32302 | vupen | ADV-2008-2825 | xf | oracle-workshop-tags-unauth-access(45909) |
|
Last major update |
08-08-2017 - 01:32 |
Published |
14-10-2008 - 21:11 |
Last modified |
08-08-2017 - 01:32 |