CVE-2007-2705

N/A Unknown

Published: May 16, 2007 Modified: April 23, 2026

Description

Directory traversal vulnerability in the Test View Console in BEA WebLogic Integration 9.2 before SP1 and WebLogic Workshop 8.1 SP2 through SP6, when "deployed in an exploded format," allows remote attackers to list a WebLogic Workshop Directory (wlwdir) parent directory via unspecified vectors.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://dev2dev.bea.com/pub/advisory/239

Source: cve@mitre.org

Patch Vendor Advisory

http://osvdb.org/36063

Source: cve@mitre.org

http://www.securitytracker.com/id?1018059

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2007/1815

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/34281

Source: cve@mitre.org

http://dev2dev.bea.com/pub/advisory/239

Source: af854a3a-2127-422b-91ae-364da2661108

Patch Vendor Advisory

http://osvdb.org/36063

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securitytracker.com/id?1018059

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2007/1815

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/34281

Source: af854a3a-2127-422b-91ae-364da2661108

10 reference(s) from NVD

Quick Stats

CVSS v3 Score

N/A / 10.0

EPSS (Exploit Probability)

0.6%

69th percentile

Exploitation Status

Not in CISA KEV

Affected Vendors

bea