Unrated severityNVD Advisory· Published May 19, 2006· Updated Jun 16, 2026

CVE-2006-2470

Description

Unspecified vulnerability in the WebLogic Server Administration Console for BEA WebLogic Server 9.0 prevents the console from setting custom JDBC security policies correctly, which could allow attackers to bypass intended policies.

Affected products

Bea/WebLogic Server2 versions
cpe:2.3:a:bea:weblogic_server:9.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:bea:weblogic_server:9.0:*:*:*:*:*:*:*
- (no CPE)range: =9.0

Patches

Vulnerability mechanics

References

dev2dev.bea.com/pub/advisory/188nvdPatchVendor Advisory
secunia.com/advisories/20130nvdPatchVendor Advisory
www.vupen.com/english/advisories/2006/1828nvd
exchange.xforce.ibmcloud.com/vulnerabilities/26464nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000