Sign in Get started

← All advisories

Unrated severityNVD Advisory· Published Jan 25, 2006· Updated Apr 16, 2026

CVE-2006-0425

CVE-2006-0425

Description

BEA WebLogic Portal 8.1 through SP4 allows remote attackers to obtain the source for a deployment descriptor file via unknown vectors.

Affected products

4

Oracle Corporation/Weblogic Portal4 versions
cpe:2.3:a:oracle:weblogic_portal:8.1:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:oracle:weblogic_portal:8.1:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:weblogic_portal:8.1:sp1:*:*:*:*:*:*
- cpe:2.3:a:oracle:weblogic_portal:8.1:sp2:*:*:*:*:*:*
- cpe:2.3:a:oracle:weblogic_portal:8.1:sp3:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

6

dev2dev.bea.com/pub/advisory/169nvdPatchVendor Advisory
securitytracker.com/idnvdPatch
secunia.com/advisories/18593nvd
www.securityfocus.com/bid/16358nvd
www.vupen.com/english/advisories/2006/0312nvd
exchange.xforce.ibmcloud.com/vulnerabilities/24297nvd

News mentions

0

No linked articles in our index yet.