Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-4614


Vulnerability Score 7.5 7.5
CVE Id CVE-2007-4614
Last Modified 13 Nov 2008 01:46:26
Published 30 Aug 2007 08:17:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



BEA WebLogic Server 9.1 does not properly handle propagation of an admin server's security policy change log to temporarily unavailable managed servers, which might allow attackers to bypass intended restrictions, a different vulnerability than CVE-2007-0426.

Vulnerable Systems


  • Bea Weblogic Server 9.1


BID - 22082

BEA - BEA07-149.00

OSVDB - 45839

Last Updated: 27 May 2016 10:45:54