CVE-2008-0863

EUVD-2008-0870
BEA WebLogic Server and WebLogic Express 9.0 and 9.1 exposes the web service's WSDL and security policies, which allows remote attackers to obtain sensitive information and potentially launch further attacks.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 49%
Affected Products (NVD)
VendorProductVersion
beaweblogic_server
9.0
beaweblogic_server
9.0
beaweblogic_server
9.1
beaweblogic_server
9.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://dev2dev.bea.com/pub/advisory/260
http://www.securitytracker.com/id?1019455
http://www.vupen.com/english/advisories/2008/0612/references
http://dev2dev.bea.com/pub/advisory/260
http://www.securitytracker.com/id?1019455
http://www.vupen.com/english/advisories/2008/0612/references