← CVECheck
HomeVulnerabilities

CVE-2003-1224 — LOW severity vulnerability (Weblogic.admin for BEA WebLogic Server and Express 7.0 and 7)

Weblogic.admin for BEA WebLogic Server and Express 7.0 and 7.0.0.1 displays the JDBCConnectionPoolRuntimeMBean password to the screen in cleartext, which allows attackers to read a user's password by physically observing ("shoulder surfing") the screen.

CVE IDCVE-2003-1224
SeverityLOW
CVSS score2.1
CVSS vectorAV:L/AC:L/Au:N/C:P/I:N/A:N
CWENVD-CWE-Other
StatusModified
Published2003-12-31
Last modified2026-04-16
DescriptionWeblogic.admin for BEA WebLogic Server and Express 7.0 and 7.0.0.1 displays the JDBCConnectionPoolRuntimeMBean password to the screen in cleartext, which allows attackers to read a user's password by physically observing ("shoulder surfing") the screen.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →