CVE-2003-1438 — MEDIUM severity vulnerability (Race condition in BEA WebLogic Server and Express 5.1 throug)
Race condition in BEA WebLogic Server and Express 5.1 through 7.0.0.1, when using in-memory session replication or replicated stateful session beans, causes the same buffer to be provided to two users, which could allow one user to see session data that was intended for another user.
| CVE ID | CVE-2003-1438 |
|---|---|
| Severity | MEDIUM |
| CVSS score | 4.3 |
| CVSS vector | AV:N/AC:M/Au:N/C:P/I:N/A:N |
| CWE | CWE-362 |
| Status | Modified |
| Published | 2003-12-31 |
| Last modified | 2026-04-16 |
| Description | Race condition in BEA WebLogic Server and Express 5.1 through 7.0.0.1, when using in-memory session replication or replicated stateful session beans, causes the same buffer to be provided to two users, which could allow one user to see session data that was intended for another user. |
| Source | NIST National Vulnerability Database |
🔍 Search all vulnerabilities →
$999/mo
Try CVECheck →