Weblogic Server
Approved changes feed: RSS · Atom
cpe:2.3:a:bea:weblogic_server:*:*:express:*:*:*:*:*
part: a version: * update: *
| Vendor | Bea (c4fe31a7-8f48-5c00-b7c2-e6a20391219c) |
|---|---|
| Product | Weblogic Server (ebf23157-7e5f-5cf4-ba69-dda04749aa52) |
| Edition | express |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2003-0640 |
vulnerable | 2026-06-03 14:26:26.126743 |
Details available
BEA WebLogic Server and Express, when using NodeManager to start servers, provides Operator users with privileges to overwrite usernames and passwords, which may allow Operators to gain Admin privileges.
Published: 2003-08-02T04:00:00.000Z
Updated: 2024-08-08T01:58:11.192Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2000-0499 |
vulnerable | 2026-06-03 14:25:59.233737 |
Details available
The default configuration of BEA WebLogic 3.1.8 through 4.5.1 allows a remote attacker to view source code of a JSP program by requesting a URL which provides the JSP extension in upper case.
Published: 2000-10-13T04:00:00.000Z
Updated: 2024-08-08T05:21:30.906Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.