Medium
CVSS 5.0
Overview
The Administration Console for BEA Tuxedo 8.1 and earlier allows remote attackers to determine the existence of files outside the web root via modified paths in the INIFILE argument.
CVE-2003-0621
The Administration Console for BEA Tuxedo 8.1 and earlier allows remote attacker...
Risk analysis
This vulnerability is rated 🟡 MEDIUM.
- CVSS: 5.0 (MEDIUM)
- Detected tags: none (tag impact: LOW)
Recommended actions:
- Prioritize remediation based on business criticality and exposure.
- Limit exposure and increase monitoring until fixed.