CVE-2008-5460

Published: Jan 14, 2009Modified: Apr 23, 2026

2.6

Vector

AV:N/AC:H/Au:N/C:P/I:N/A:N

Exploitability: 4.9 / Impact: 2.9

Source: NVD

Description

Unspecified vulnerability in the WebLogic Server component in BEA Product Suite 10.3, 10.0 MP1, 9.2 MP3, 9.1, and 9.0 allows remote attackers to affect confidentiality via unknown vectors.

Affected (5)

Products: Oracle: Bea Product Suite

1 product

Bea Product Suite

Configuration A

5 vulnerable

Vulnerable Software	Affected Versions
Oracle Bea Product Suite	Version 10.0 mp1
Oracle Bea Product Suite	Version 10.3
Oracle Bea Product Suite	Version 9.0
Oracle Bea Product Suite	Version 9.1
Oracle Bea Product Suite	Version 9.2 mp3

Related CWEs

Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

References (10)

http://secunia.com/advisories/33526

Source: secalert_us@oracle.com

http://www.oracle.com/technetwork/topics/security/cpujan2009-097901.html

Source: secalert_us@oracle.com

http://www.securityfocus.com/bid/33177

Source: secalert_us@oracle.com

http://www.securitytracker.com/id?1021571

Source: secalert_us@oracle.com

http://www.vupen.com/english/advisories/2009/0115

Source: secalert_us@oracle.com

http://secunia.com/advisories/33526

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.oracle.com/technetwork/topics/security/cpujan2009-097901.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/33177

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securitytracker.com/id?1021571

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2009/0115

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.