Vulnerability Description
Unspecified vulnerability in BEA WebLogic Server and WebLogic Express 8.1 SP5 allows untrusted applications to obtain the server's SSL identity via unknown attack vectors.
CVSS Score
2.1
LOW
AV:L/AC:L/Au:N/C:P/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Bea | Weblogic Server | 8.1 |
References
- http://dev2dev.bea.com/pub/advisory/175PatchVendor Advisory
- http://secunia.com/advisories/18592PatchVendor Advisory
- http://securitytracker.com/id?1015528Patch
- http://www.securityfocus.com/bid/16358
- http://www.vupen.com/english/advisories/2006/0313
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24302
- http://dev2dev.bea.com/pub/advisory/175PatchVendor Advisory
- http://secunia.com/advisories/18592PatchVendor Advisory
- http://securitytracker.com/id?1015528Patch
- http://www.securityfocus.com/bid/16358
- http://www.vupen.com/english/advisories/2006/0313
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24302
FAQ
What is CVE-2006-0431?
CVE-2006-0431 is a vulnerability with a CVSS score of 2.1 (LOW). Unspecified vulnerability in BEA WebLogic Server and WebLogic Express 8.1 SP5 allows untrusted applications to obtain the server's SSL identity via unknown attack vectors.
How severe is CVE-2006-0431?
CVE-2006-0431 has been rated LOW with a CVSS base score of 2.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-0431?
Check the references section above for vendor advisories and patch information. Affected products include: Bea Weblogic Server.