Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2005-4753

BEA WebLogic Server and WebLogic Express 8.1 SP4 and earlier, and 7.0 SP6 and earlier, in certain "heavy usage" scenarios, report incorrect severity levels for an audit event, which might allow attackers to perform unauthorized actions and avoid detection.

  • Published: Dec 31, 2005
  • Updated: Apr 13, 2023
  • CVE: CVE-2005-4753
  • Severity: Medium
  • Exploit:

CVSS v2:

  • Severity: Medium
  • Score: 5
  • AV:N/AC:L/Au:N/C:N/I:P/A:N

No CWE or OWASP classifications available.

Software From Fixed in
bea / weblogic_server 8.1 8.1.x
bea / weblogic_server 7.0-sp2 7.0-sp2.x
bea / weblogic_server 7.0-sp4 7.0-sp4.x
bea / weblogic_server 7.0 7.0.x
bea / weblogic_server 7.0-sp6 7.0-sp6.x
bea / weblogic_server 7.0-sp3 7.0-sp3.x
bea / weblogic_server 8.1-sp3 8.1-sp3.x
bea / weblogic_server 8.1-sp4 8.1-sp4.x
bea / weblogic_server 7.0-sp5 7.0-sp5.x
bea / weblogic_server 8.1-sp1 8.1-sp1.x
bea / weblogic_server 8.1-sp2 8.1-sp2.x
bea / weblogic_server 7.0-sp1 7.0-sp1.x