PT-2015-6687 · Oracle · Oracle Weblogic Server+1
Published
2015-07-16
·
Updated
2016-12-28
·
CVE-2015-4744
CVSS v2.0
2.6
Low
| Vector | AV:N/AC:H/Au:N/C:N/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
Oracle GlassFish Server versions 2.1.1, 3.0.1, 3.1.2
Oracle WebLogic Server versions 10.3.6.0, 12.1.1.0, 12.1.2.0, 12.1.3.0
Description
The issue affects the integrity of the system, allowing remote attackers to exploit it via unknown vectors related to Java Server Faces.
Recommendations
For Oracle GlassFish Server versions 2.1.1, 3.0.1, 3.1.2, update to a version that includes the fix for this issue.
For Oracle WebLogic Server versions 10.3.6.0, 12.1.1.0, 12.1.2.0, 12.1.3.0, update to a version that includes the fix for this issue.
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Oracle Glassfish Server
Oracle Weblogic Server