CVE-2006-0432

N/A Unknown

Published: January 25, 2006 Modified: April 16, 2026

Description

Unspecified vulnerability in BEA WebLogic Server and WebLogic Express 9.0, when an Administrator uses the WebLogic Administration Console to add custom security policies, causes incorrect policies to be created, which prevents the server from properly protecting JNDI resources.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://dev2dev.bea.com/pub/advisory/176

Source: cve@mitre.org

Patch Vendor Advisory

http://secunia.com/advisories/18592

Source: cve@mitre.org

Patch Vendor Advisory

http://securitytracker.com/id?1015528

Source: cve@mitre.org

Patch

http://www.securityfocus.com/bid/16358

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2006/0313

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/24299

Source: cve@mitre.org

http://dev2dev.bea.com/pub/advisory/176

Source: af854a3a-2127-422b-91ae-364da2661108

Patch Vendor Advisory

http://secunia.com/advisories/18592

Source: af854a3a-2127-422b-91ae-364da2661108

Patch Vendor Advisory

http://securitytracker.com/id?1015528

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

http://www.securityfocus.com/bid/16358

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2006/0313

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/24299

Source: af854a3a-2127-422b-91ae-364da2661108

12 reference(s) from NVD

Quick Stats

CVSS v3 Score

N/A / 10.0

EPSS (Exploit Probability)

0.1%

28th percentile

Exploitation Status

Not in CISA KEV

Affected Vendors

bea