Vulnerability in Oracle Weblogic_portal
CVE-2007-0423
BEA WebLogic Portal 9.2 does not properly handle when an administrator deletes entitlements for a role, which causes other role entitlements to be "inadvertently affected," which has an unknown impact.
EPSS: 0.004 (27.7th percentile) — read the EPSS interpretation.
Affected products
- Oracle Weblogic_portal — versions 9.2
- N/a — versions n/a
References
- cve@mitre.org (x_refsource_OSVDB, vdb-entry)
- cve@mitre.org (x_refsource_SECUNIA, third-party-advisory)
- cve@mitre.org (vdb-entry, x_refsource_BID)
- cve@mitre.org (vdb-entry, x_refsource_SECTRACK)
- cve@mitre.org (vdb-entry, x_refsource_VUPEN)
- cve@mitre.org (vendor-advisory, x_refsource_BEA, Patch, Vendor Advisory)