mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-07-30 18:04:30 +00:00
88 lines
2.4 KiB
JSON
88 lines
2.4 KiB
JSON
{
|
|
"CVE_data_meta" : {
|
|
"ASSIGNER" : "cve@mitre.org",
|
|
"ID" : "CVE-2007-2696",
|
|
"STATE" : "PUBLIC"
|
|
},
|
|
"affects" : {
|
|
"vendor" : {
|
|
"vendor_data" : [
|
|
{
|
|
"product" : {
|
|
"product_data" : [
|
|
{
|
|
"product_name" : "n/a",
|
|
"version" : {
|
|
"version_data" : [
|
|
{
|
|
"version_value" : "n/a"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
},
|
|
"vendor_name" : "n/a"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"data_format" : "MITRE",
|
|
"data_type" : "CVE",
|
|
"data_version" : "4.0",
|
|
"description" : {
|
|
"description_data" : [
|
|
{
|
|
"lang" : "eng",
|
|
"value" : "The JMS Server in BEA WebLogic Server 6.1 through SP7, 7.0 through SP6, and 8.1 through SP5 enforces security access policies on the front end, which allows remote attackers to access protected queues via direct requests to the JMS back-end server."
|
|
}
|
|
]
|
|
},
|
|
"problemtype" : {
|
|
"problemtype_data" : [
|
|
{
|
|
"description" : [
|
|
{
|
|
"lang" : "eng",
|
|
"value" : "n/a"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"references" : {
|
|
"reference_data" : [
|
|
{
|
|
"name" : "BEA07-160.00",
|
|
"refsource" : "BEA",
|
|
"url" : "http://dev2dev.bea.com/pub/advisory/228"
|
|
},
|
|
{
|
|
"name" : "ADV-2007-1815",
|
|
"refsource" : "VUPEN",
|
|
"url" : "http://www.vupen.com/english/advisories/2007/1815"
|
|
},
|
|
{
|
|
"name" : "36073",
|
|
"refsource" : "OSVDB",
|
|
"url" : "http://osvdb.org/36073"
|
|
},
|
|
{
|
|
"name" : "1018057",
|
|
"refsource" : "SECTRACK",
|
|
"url" : "http://securitytracker.com/id?1018057"
|
|
},
|
|
{
|
|
"name" : "25284",
|
|
"refsource" : "SECUNIA",
|
|
"url" : "http://secunia.com/advisories/25284"
|
|
},
|
|
{
|
|
"name" : "weblogic-jms-security-bypass(34284)",
|
|
"refsource" : "XF",
|
|
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/34284"
|
|
}
|
|
]
|
|
}
|
|
}
|