Vulnerability in Bea Weblogic_integration
CVE-2002-2142
An undocumented extension for the Servlet mappings in the Servlet 2.3 specification, when upgrading to WebLogic Server and Express 7.0 Service Pack 1 from BEA WebLogic Server and Express 6.0 through 7.0.0.1, does not prepend a "/" characte…
EPSS: 0.013 (66.5th percentile) — read the EPSS interpretation.
Affected products
- Bea Weblogic_integration — versions 7.0
- Bea Weblogic_server — versions 6.0, 6.1, 7.0
- N/a — versions n/a
References
- cve@mitre.org (vdb-entry, x_refsource_XF)
- cve@mitre.org (Patch, vdb-entry, x_refsource_BID)
- cve@mitre.org (vendor-advisory, x_refsource_BEA)