Vulnerability in Oracle Weblogic_portal
CVE-2007-2703
BEA WebLogic Portal 9.2 GA can corrupt a visitor entitlements role if an administrator provides a long role description, which might allow remote authenticated users to access privileged resources.
EPSS: 0.015 (71.6th percentile) — read the EPSS interpretation.
Affected products
- Oracle Weblogic_portal — versions 9.2
- N/a — versions n/a
References
- cve@mitre.org (x_refsource_OSVDB, vdb-entry)
- cve@mitre.org (vdb-entry, x_refsource_XF)
- cve@mitre.org (x_refsource_SECUNIA, Vendor Advisory, third-party-advisory)
- cve@mitre.org (vendor-advisory, x_refsource_BEA, Patch, Vendor Advisory)
- cve@mitre.org (vdb-entry, x_refsource_SECTRACK, Vendor Advisory)
- cve@mitre.org (vdb-entry, x_refsource_VUPEN)