← CVECheck
HomeVulnerabilities

CVE-2003-1222 — MEDIUM severity vulnerability (BEA Weblogic Express and Server 8.0 through 8.1 SP 1, when u)

BEA Weblogic Express and Server 8.0 through 8.1 SP 1, when using a foreign Java Message Service (JMS) provider, echoes the password for the foreign provider to the console and stores it in cleartext in config.xml, which could allow attackers to obtain the password.

CVE IDCVE-2003-1222
SeverityMEDIUM
CVSS score5.0
CVSS vectorAV:N/AC:L/Au:N/C:P/I:N/A:N
CWENVD-CWE-Other
StatusModified
Published2003-12-31
Last modified2026-04-16
DescriptionBEA Weblogic Express and Server 8.0 through 8.1 SP 1, when using a foreign Java Message Service (JMS) provider, echoes the password for the foreign provider to the console and stores it in cleartext in config.xml, which could allow attackers to obtain the password.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →