← back
CVE-2004-2321

CVE-2004-2321

EPSS 0.2%
BEA WebLogic Server and Express 8.1 SP1 and earlier allows local users in the Operator role to obtain administrator passwords via MBean attributes, including (1) ServerStartMBean.Password and (2) NodeManagerMBean.CertificatePassword.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://dev2dev.bea.com/pub/advisory/1https://exchange.xforce.ibmcloud.com/vulnerabilities/14962http://www.securityfocus.com/bid/9505http://www.securitytracker.com/alerts/2004/Jan/1008867.html