CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2007-2698

The Administration Console in BEA WebLogic Server 9.0 may show plaintext Web Service attributes during configuration creation, which allows remote attackers to obtain sensitive credential information.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 54.1%

CVSS Severity

CVSS v2 Score 5.0

References

http://dev2dev.bea.com/pub/advisory/230
http://osvdb.org/36071
http://securitytracker.com/id?1018057
http://www.vupen.com/english/advisories/2007/1815
https://exchange.xforce.ibmcloud.com/vulnerabilities/34286
http://dev2dev.bea.com/pub/advisory/230
http://osvdb.org/36071
http://securitytracker.com/id?1018057
http://www.vupen.com/english/advisories/2007/1815
https://exchange.xforce.ibmcloud.com/vulnerabilities/34286

Products affected by CVE-2007-2698

Bea » Weblogic Server » Version: 9.0

cpe:2.3:a:bea:weblogic_server:9.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2007-2698

Products

Pricing

Contact Us