What is CVE-2008-4008?

CVE-2008-4008 is a vulnerability in N/a. Published 2008-10-14.

Is CVE-2008-4008 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2008-4008

Unspecified vulnerability in the WebLogic Server Plugins for Apache component in BEA Product Suite 10.3, 10.0 MP1, 9.2 MP3, 9.1, 9.0, 8.1 SP6, 7.0 SP7, and 6.1 SP7 allows remote attackers to affect confidentiality, integrity, and availabil…

EPSS: 0.858 (99.4th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

rapid7/metasploit-framework

References

www.oracle.com/technetwork/topics/security/cpuoct2008-100299.html (x_refsource_CONFIRM)
20081029 Oracle WebLogic Apache Connector (x_refsource_IDEFENSE, third-party-advisory)
1021056 (vdb-entry, x_refsource_SECTRACK)
ADV-2008-2825 (vdb-entry, x_refsource_VUPEN)

Frequently asked questions

What is CVE-2008-4008?: CVE-2008-4008 is a vulnerability in N/a. Published 2008-10-14.
Is CVE-2008-4008 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.