Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Unspecified vulnerability in BEA WebLogic Server and WebLogic Express 8.1 through SP3, 7.0 through SP6, and 6.1 through SP7, when SSL is intended to be used, causes an unencrypted protocol to be used in certain unspecified circumstances, which causes user credentials to be sent across the network in cleartext and allows remote attackers to gain privileges.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
BEA WebLogic Server和WebLogic Express 未明得漏洞
Vulnerability Description
BEA WebLogic Server和WebLogic Express 8.1至SP3、7.0至SP6及6.1至SP7版本存在未明得漏洞,当预期使用SSL时,系统在某些未明情况下使用未加密的协议,使得本地用户凭证以明文方式在网络上发送,让远程攻击者获取权限。
CVSS Information
N/A
Vulnerability Type
N/A