Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

oracle weblogic server 9.0 vulnerabilities and exploits

(subscribe to this query)
10
CVSSv2
CVE-2010-3510
Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 9.0, 9.1, 9.2.3, 10.0.2, 10.3.2, and 10.3.3 allows remote malicious users to affect confidentiality, integrity, and availability via unknown vectors related to Node Manager.
Oracle Fusion Middleware 9.0Oracle Fusion Middleware 9.1Oracle Fusion Middleware 9.2.3Oracle Fusion Middleware 10.0.2Oracle Fusion Middleware 10.3.2Oracle Fusion Middleware 10.3.3
10
CVSSv2
CVE-2010-0073
Unspecified vulnerability in the WebLogic Server in Oracle WebLogic Server 7.0 SP7, 8.1 SP6, 9.0, 9.1, 9.2 MP3, 10.0 MP2, and 10.3.2 allows remote malicious users to affect confidentiality, integrity, and availability via unknown vectors.
Oracle Weblogic Server 7.0Oracle Weblogic Server 8.1Oracle Weblogic Server 9.0Oracle Weblogic Server 9.1Oracle Weblogic Server 9.2Oracle Weblogic Server 10.0Oracle Weblogic Server 10.3.2.0.0
10
CVSSv2
CVE-2009-1012
Unspecified vulnerability in the plug-ins for Apache and IIS web servers in Oracle BEA WebLogic Server 7.0 Gold through SP7, 8.1 Gold through SP6, 9.0, 9.1, 9.2 Gold through MP3, 10.0 Gold through MP1, and 10.3 allows remote malicious users to affect confidentiality, integrity, a...
Oracle Bea Product Suite 10.0Oracle Bea Product Suite 9.2Oracle Bea Product Suite 10.3Oracle Bea Product Suite 8.1Oracle Bea Product Suite 7.0Oracle Bea Product Suite 9.1Oracle Bea Product Suite 9.0
10
CVSSv2
CVE-2008-5457
Unspecified vulnerability in the Oracle BEA WebLogic Server Plugins for Apache, Sun and IIS web servers component in BEA Product Suite 10.3, 10.0 MP1, 9.2 MP3, 9.1, 9.0, 8.1 SP6, and 7.0 SP7 allows remote malicious users to affect confidentiality, integrity, and availability via ...
Oracle Bea Product Suite 10.3Oracle Bea Product Suite 10.0Oracle Bea Product Suite 9.2Oracle Bea Product Suite 8.1Oracle Bea Product Suite 7.0Oracle Bea Product Suite 9.1Oracle Bea Product Suite 9.0
10
CVSSv2
CVE-2008-4008
Unspecified vulnerability in the WebLogic Server Plugins for Apache component in BEA Product Suite 10.3, 10.0 MP1, 9.2 MP3, 9.1, 9.0, 8.1 SP6, 7.0 SP7, and 6.1 SP7 allows remote malicious users to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the ...
Oracle Bea Product Suite 9.2Oracle Bea Product Suite 8.1Oracle Bea Product Suite 7.0Oracle Bea Product Suite 9.1Oracle Bea Product Suite 9.0Oracle Bea Product Suite 6.1Oracle Bea Product Suite 10.0Oracle Bea Product Suite 10.3
10
CVSSv2
CVE-2008-3257
Stack-based buffer overflow in the Apache Connector (mod_wl) in Oracle WebLogic Server (formerly BEA WebLogic Server) 10.3 and previous versions allows remote malicious users to execute arbitrary code via a long HTTP version string, as demonstrated by a string after "POST /....
Bea Weblogic Server 3.1.8Bea Weblogic Server 4.5.1Bea Weblogic Server 4.5.2Bea Weblogic Server 5.1Bea Weblogic Server 6.1Bea Weblogic Server 7.0.0.1Bea Weblogic Server 7.0Bea Weblogic Server 8.1Bea Weblogic Server 9.0Bea Weblogic Server 9.1Bea Weblogic Server 10.0Bea Weblogic Server 6.0Bea Weblogic Server 9.2Bea Weblogic Server 4.0Bea Weblogic Server 4.0.4Bea Systems Apache Connector In Weblogic ServerBea Weblogic Server 4.5Bea Systems Weblogic Server 10.0 Mp1Oracle Weblogic Server
8.5
CVSSv2
CVE-2021-44832
Apache Log4j2 versions 2.0-beta7 up to and including 2.17.0 (excluding security fix releases 2.3.2 and 2.12.4) are vulnerable to a remote code execution (RCE) attack when a configuration uses a JDBC Appender with a JNDI LDAP data source URI when an attacker has control of the tar...
Apache Log4j 2.0Apache Log4jOracle Weblogic Server 12.2.1.3.0Oracle Primavera Unifier 18.8Oracle Weblogic Server 12.2.1.4.0Oracle Primavera Unifier 19.12Oracle Weblogic Server 14.1.1.0.0Oracle Primavera Unifier 20.12Oracle Communications Interactive Session Recorder 6.3Oracle Communications Interactive Session Recorder 6.4Oracle Primavera GatewayOracle Retail Assortment Planning 16.0.3Oracle Primavera Unifier 21.12Oracle Primavera P6 Enterprise Project Portfolio Management 21.12.0.0Oracle Primavera P6 Enterprise Project Portfolio ManagementOracle Primavera Gateway 21.12.0Oracle Retail Fiscal Management 14.2Oracle Siebel Ui Framework 21.12Oracle Communications Diameter Signaling RouterCisco Cloudcenter 4.10.0.16Fedoraproject Fedora 34Fedoraproject Fedora 35
8.5
CVSSv2
CVE-2009-1016
Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 10.3, 10.0 MP1, 9.2 MP3, 9.1, 9.0, 8.1 SP6, and 7.0 SP7 allows remote authenticated users to affect confidentiality, integrity, and availability, related to IIS. NOTE: the previous information was obt...
Oracle Bea Product Suite 10.3Oracle Bea Product Suite 9.2Oracle Bea Product Suite 10.0Oracle Bea Product Suite 8.1Oracle Bea Product Suite 7.0Oracle Bea Product Suite 9.1Oracle Bea Product Suite 9.0
7.5
CVSSv2
CVE-2022-22965
A Spring MVC or Spring WebFlux application running on JDK 9+ may be vulnerable to remote code execution (RCE) via data binding. The specific exploit requires the application to run on Tomcat as a WAR deployment. If the application is deployed as a Spring Boot executable jar, i.e....
Vmware Spring FrameworkCisco Cx Cloud AgentOracle Sd-wan Edge 9.0Oracle Retail Xstore Point Of Service 20.0.1Oracle Communications Cloud Native Core Security Edge Protection Proxy 1.7.0Oracle Financial Services Analytical Applications Infrastructure 8.1.1Oracle Sd-wan Edge 9.1Siemens Siveillance Identity 1.6Siemens Siveillance Identity 1.5Siemens Sipass Integrated 2.85Siemens Sipass Integrated 2.80Oracle Product Lifecycle Analytics 3.6.1Oracle Financial Services Enterprise Case Management 8.1.1.0Oracle Financial Services Enterprise Case Management 8.1.1.1Oracle Financial Services Behavior Detection Platform 8.1.2.0Oracle Financial Services Behavior Detection Platform 8.1.1.1Oracle Financial Services Behavior Detection Platform 8.1.1.0Oracle Communications Cloud Native Core Console 1.9.0Oracle Communications Cloud Native Core Policy 1.15.0Oracle Communications Cloud Native Core Unified Data Repository 1.15.0Oracle Communications Cloud Native Core Unified Data Repository 22.1.0Oracle Communications Cloud Native Core Security Edge Protection Proxy 22.1.0
7.5
CVSSv2
CVE-2021-21347
XStream is a Java library to serialize objects to XML and back again. In XStream before version 1.4.16, there is a vulnerability which may allow a remote malicious user to load and execute arbitrary code from a remote host only by manipulating the processed input stream. No user ...
Xstream Project XstreamDebian Debian Linux 9.0Debian Debian Linux 10.0Debian Debian Linux 11.0Fedoraproject Fedora 33Fedoraproject Fedora 34Fedoraproject Fedora 35Oracle Banking Platform 2.4.0Oracle Weblogic Server 12.1.3.0.0Oracle Weblogic Server 12.2.1.3.0Oracle Webcenter Portal 12.2.1.3.0Oracle Webcenter Portal 11.1.1.9.0Oracle Communications Unified Inventory Management 7.3.2Oracle Communications Unified Inventory Management 7.3.4Oracle Communications Unified Inventory Management 7.3.5Oracle Communications Unified Inventory Management 7.4.0Oracle Communications Policy Management 12.5.0Oracle Weblogic Server 12.2.1.4.0Oracle Webcenter Portal 12.2.1.4.0Oracle Weblogic Server 14.1.1.0.0Oracle Banking Platform 2.7.1Oracle Banking Platform 2.9.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-21111CVE-2024-32884IDORCVE-2023-1000CVE-2024-33260CVE-2024-3682reflected XSSrace conditionCVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook