Unrated severityNVD Advisory· Published Feb 21, 2008· Updated Jun 16, 2026
CVE-2008-0865
CVE-2008-0865
Description
Unspecified vulnerability in BEA WebLogic Portal 8.1 through SP6 allows remote attackers to bypass entitlements for instances of a floatable WLP portlet via unknown vectors.
Affected products
8cpe:2.3:a:bea_systems:weblogic_portal:8.1_sp6:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:bea_systems:weblogic_portal:8.1_sp6:*:*:*:*:*:*:*
- (no CPE)range: 8.1 through SP6
cpe:2.3:a:oracle:weblogic_portal:8.1:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:a:oracle:weblogic_portal:8.1:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:weblogic_portal:8.1:sp1:*:*:*:*:*:*
- cpe:2.3:a:oracle:weblogic_portal:8.1:sp2:*:*:*:*:*:*
- cpe:2.3:a:oracle:weblogic_portal:8.1:sp3:*:*:*:*:*:*
- cpe:2.3:a:oracle:weblogic_portal:8.1:sp4:*:*:*:*:*:*
- cpe:2.3:a:oracle:weblogic_portal:8.1:sp5:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.