Unrated severityNVD Advisory· Published Jan 25, 2006· Updated Jun 16, 2026
CVE-2006-0432
CVE-2006-0432
Description
Unspecified vulnerability in BEA WebLogic Server and WebLogic Express 9.0, when an Administrator uses the WebLogic Administration Console to add custom security policies, causes incorrect policies to be created, which prevents the server from properly protecting JNDI resources.
Affected products
4cpe:2.3:a:bea:weblogic_server:9.0:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:bea:weblogic_server:9.0:*:*:*:*:*:*:*
- cpe:2.3:a:bea:weblogic_server:9.0:*:express:*:*:*:*:*
- (no CPE)range: 9.0
- Range: 9.0
Patches
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
6- dev2dev.bea.com/pub/advisory/176nvdPatchVendor Advisory
- secunia.com/advisories/18592nvdPatchVendor Advisory
- securitytracker.com/idnvdPatch
- www.securityfocus.com/bid/16358nvd
- www.vupen.com/english/advisories/2006/0313nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/24299nvd
News mentions
0No linked articles in our index yet.