Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The SSL server implementation in BEA WebLogic Server 7.0 Gold through SP7, 8.1 Gold through SP6, 9.0, 9.1, 9.2 Gold through MP1, and 10.0 sometimes selects the null cipher when no other cipher is compatible between the server and client, which might allow remote attackers to intercept communications.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
BEA WebLogic Server SSL服务器密码设置漏洞
Vulnerability Description
BEA WebLogic Server 7.0 Gold 至 SP7, 8.1 Gold 至 SP6, 9.0, 9.1, 9.2 Gold 至 MP1, 和 10.0 版本的SSL服务器执行程序有事在没有其他密码与服务器和客户端是相匹配时,有事会选择无效密码,这会允许远程攻击者插入会话。
CVSS Information
N/A
Vulnerability Type
N/A