Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
BEA WebLogic Server and WebLogic Express 8.1 SP4 and earlier, 7.0 SP6 and earlier, and 6.1 SP7 and earlier, when Internet Inter-ORB Protocol (IIOP) is used, sometimes include a password in an exception message that is sent to a client or stored in a log file, which might allow remote attackers to perform unauthorized actions.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
BEA WebLogic Server和WebLogic Express多个安全漏洞
Vulnerability Description
BEA Systems WebLogic包含多种应用系统集成方案,包括Server/Express/Integration等。 BEA发布了24个安全公告,描述了各种影响BEA WebLogic Server和WebLogic Express的漏洞,包括口令泄漏、跨站脚本、拒绝服务等。本地或远程攻击者可以利用这些漏洞破坏计算机的保密性、完整性等,最终导致完全入侵有漏洞的机器。
CVSS Information
N/A
Vulnerability Type
N/A