{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-24T00:14:43.174","vulnerabilities":[{"cve":{"id":"CVE-2004-0713","sourceIdentifier":"cve@mitre.org","published":"2004-07-27T04:00:00.000","lastModified":"2026-06-16T22:06:13.033","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"The remove method in a stateful Enterprise JavaBean (EJB) in BEA WebLogic Server and WebLogic Express version 8.1 through SP2, 7.0 through SP4, and 6.1 through SP6, does not properly check EJB permissions before unexporting a bean, which allows remote authenticated users to remove EJB objects from remote views before the security exception is thrown."},{"lang":"es","value":"El método remove en una Enterprise JavaBean (EJB) con estado  en BEA WebLogic Server y WebLogic Express version 8.1 hasta SP2, 7.0 hasta SP4, y 6.1 a SP6, no comprueba adecuadamente permisos EJB antes de dejar de exportar una habichuela (bean), lo que permite a usuarios remotos autenticados eliminar objetos EJB de vistas remotas antes de que se lance la excepción de seguridad."}],"affected":[{"source":"cve@mitre.org","affectedData":[{"vendor":"n/a","product":"n/a","versions":[{"version":"n/a","status":"affected"}]}]}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:P/A:P","baseScore":6.4,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":4.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-Other"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:bea:weblogic_server:6.1:*:*:*:*:*:*:*","matchCriteriaId":"1FDCF6AE-43DC-4AE5-9260-CA657F40BE77"},{"vulnerable":true,"criteria":"cpe:2.3:a:bea:weblogic_server:6.1:*:express:*:*:*:*:*","matchCriteriaId":"05AFBE78-C611-4EA2-8B00-5F8B61696CBE"},{"vulnerable":true,"criteria":"cpe:2.3:a:bea:weblogic_server:6.1:*:win32:*:*:*:*:*","matchCriteriaId":"AC5439C1-D06F-44C6-94F5-2BD8598A506C"},{"vulnerable":true,"criteria":"cpe:2.3:a:bea:weblogic_server:6.1:sp1:*:*:*:*:*:*","matchCriteriaId":"5DFE26B3-31F2-4FC0-854D-56EA4D08C28A"},{"vulnerable":true,"criteria":"cpe:2.3:a:bea:weblogic_server:6.1:sp1:express:*:*:*:*:*","matchCriteriaId":"C3B7752C-B297-480A-B3FC-948EA081670C"},{"vulnerable":true,"criteria":"cpe:2.3:a:bea:weblogic_server:6.1:sp1:win32:*:*:*:*:*","matchCriteriaId":"E40C38EC-ECA4-4F0C-8468-16191CDB9997"},{"vulnerable":true,"criteria":"cpe:2.3:a:bea:weblogic_server:6.1:sp2:*:*:*:*:*:*","matchCriteriaId":"63017BF8-D681-45EC-9C31-09D029F1126D"},{"vulnerable":true,"criteria":"cpe:2.3:a:bea:weblogic_server:6.1:sp2:express:*:*:*:*:*","matchCriteriaId":"71892EC0-E6B1-4214-AC53-06489F711829"},{"vulnerable":true,"criteria":"cpe:2.3:a:bea:weblogic_server:6.1:sp2:win32:*:*:*:*:*","matchCriteriaId":"C4FD8871-680E-40F9-85AB-417B5195D4BE"},{"vulnerable":true,"criteria":"cpe:2.3:a:bea:weblogic_server:6.1:sp3:*:*:*:*:*:*","matchCriteriaId":"8E0B1791-974A-4967-8CF9-33BE8183200B"},{"vulnerable":true,"criteria":"cpe:2.3:a:bea:weblogic_server:6.1:sp3:express:*:*:*:*:*","matchCriteriaId":"696F52AE-FEB9-4090-872E-FDFD969F5604"},{"vulnerable":true,"criteria":"cpe:2.3:a:bea:weblogic_server:6.1:sp3:win32:*:*:*:*:*","matchCriteriaId":"2B4BC3F5-BFE8-4834-B427-B6260D5B7A85"},{"vulnerable":true,"criteria":"cpe:2.3:a:bea:weblogic_server:6.1:sp4:*:*:*:*:*:*","matchCriteriaId":"7B12A8B1-F78E-46B3-8872-4C6484345477"},{"vulnerable":true,"criteria":"cpe:2.3:a:bea:weblogic_server:6.1:sp4:express:*:*:*:*:*","matchCriteriaId":"DCED03B6-7565-4F53-8D85-F3391BF66988"},{"vulnerable":true,"criteria":"cpe:2.3:a:bea:weblogic_server:6.1:sp4:win32:*:*:*:*:*","matchCriteriaId":"D2FE768F-363B-49BC-8410-739B164FB32E"},{"vulnerable":true,"criteria":"cpe:2.3:a:bea:weblogic_server:6.1:sp5:*:*:*:*:*:*","matchCriteriaId":"CB2FB0E9-3812-49C5-94F4-3B39D5BE2EED"},{"vulnerable":true,"criteria":"cpe:2.3:a:bea:weblogic_server:6.1:sp5:express:*:*:*:*:*","matchCriteriaId":"B70F0353-635F-465B-A7E5-AF2D017AB008"},{"vulnerable":true,"criteria":"cpe:2.3:a:bea:weblogic_server:6.1:sp5:win32:*:*:*:*:*","matchCriteriaId":"D3DA28D0-18CC-4F99-AABB-EC7863CBD455"},{"vulnerable":true,"criteria":"cpe:2.3:a:bea:weblogic_server:6.1:sp6:*:*:*:*:*:*","matchCriteriaId":"6B091903-943F-4822-9F24-9D109B2D76A4"},{"vulnerable":true,"criteria":"cpe:2.3:a:bea:weblogic_server:6.1:sp6:win32:*:*:*:*:*","matchCriteriaId":"CE1D6EE4-8545-4D0A-A50B-C8009F054DC2"},{"vulnerable":true,"criteria":"cpe:2.3:a:bea:weblogic_server:7.0:*:*:*:*:*:*:*","matchCriteriaId":"F9C5AFCF-79D8-4005-B800-B0C6BD461276"},{"vulnerable":true,"criteria":"cpe:2.3:a:bea:weblogic_server:7.0:*:express:*:*:*:*:*","matchCriteriaId":"FBDF3AC0-0680-4EEE-898C-47D194667BE2"},{"vulnerable":true,"criteria":"cpe:2.3:a:bea:weblogic_server:7.0:*:win32:*:*:*:*:*","matchCriteriaId":"8DEDDAF2-555D-4425-B4B6-65B1E9C21FF1"},{"vulnerable":true,"criteria":"cpe:2.3:a:bea:weblogic_server:7.0:sp1:*:*:*:*:*:*","matchCriteriaId":"6828CE4B-91E8-4688-977F-DC7BC21131C8"},{"vulnerable":true,"criteria":"cpe:2.3:a:bea:weblogic_server:7.0:sp1:express:*:*:*:*:*","matchCriteriaId":"BBDB9094-78E8-4CBF-9F5F-321D5174F1EC"},{"vulnerable":true,"criteria":"cpe:2.3:a:bea:weblogic_server:7.0:sp1:win32:*:*:*:*:*","matchCriteriaId":"9CD2BB36-AC0B-48E9-91E1-A4465896E87A"},{"vulnerable":true,"criteria":"cpe:2.3:a:bea:weblogic_server:7.0:sp2:*:*:*:*:*:*","matchCriteriaId":"E141AA86-C6D0-4FA8-9268-0FB0635DF9CF"},{"vulnerable":true,"criteria":"cpe:2.3:a:bea:weblogic_server:7.0:sp2:express:*:*:*:*:*","matchCriteriaId":"6FB8930F-C6D8-40B9-8D08-751F5B47229B"},{"vulnerable":true,"criteria":"cpe:2.3:a:bea:weblogic_server:7.0:sp2:win32:*:*:*:*:*","matchCriteriaId":"A5C59B80-279B-45B3-9CC1-5A263681025B"},{"vulnerable":true,"criteria":"cpe:2.3:a:bea:weblogic_server:7.0:sp3:*:*:*:*:*:*","matchCriteriaId":"893D9D88-43C4-4F9F-A364-0585DE6FA9E9"},{"vulnerable":true,"criteria":"cpe:2.3:a:bea:weblogic_server:7.0:sp3:express:*:*:*:*:*","matchCriteriaId":"D59F9859-7344-43F0-9348-E57FABB9E431"},{"vulnerable":true,"criteria":"cpe:2.3:a:bea:weblogic_server:7.0:sp3:win32:*:*:*:*:*","matchCriteriaId":"D2D05BAB-AB3B-466E-8301-01A41644DE77"},{"vulnerable":true,"criteria":"cpe:2.3:a:bea:weblogic_server:7.0:sp4:*:*:*:*:*:*","matchCriteriaId":"D34E2925-DE2A-437F-B349-BD7103F4C37E"},{"vulnerable":true,"criteria":"cpe:2.3:a:bea:weblogic_server:7.0:sp4:express:*:*:*:*:*","matchCriteriaId":"0A4EC87D-EF83-48C5-B516-A6A482D9F525"},{"vulnerable":true,"criteria":"cpe:2.3:a:bea:weblogic_server:7.0:sp4:win32:*:*:*:*:*","matchCriteriaId":"935F28E3-9799-4EF6-AB83-62E9C214DD0D"},{"vulnerable":true,"criteria":"cpe:2.3:a:bea:weblogic_server:8.1:*:*:*:*:*:*:*","matchCriteriaId":"E08D4CEA-9ACC-4869-BC87-3524A059914F"},{"vulnerable":true,"criteria":"cpe:2.3:a:bea:weblogic_server:8.1:*:express:*:*:*:*:*","matchCriteriaId":"ADED8968-EA9C-4F0E-AD2F-BC834F4D8A58"},{"vulnerable":true,"criteria":"cpe:2.3:a:bea:weblogic_server:8.1:*:win32:*:*:*:*:*","matchCriteriaId":"A3DFE048-905E-4890-809D-F6BCEF7F83C9"},{"vulnerable":true,"criteria":"cpe:2.3:a:bea:weblogic_server:8.1:sp1:*:*:*:*:*:*","matchCriteriaId":"6F5B2A06-CE19-4A57-9566-09FC1E259CDB"},{"vulnerable":true,"criteria":"cpe:2.3:a:bea:weblogic_server:8.1:sp1:express:*:*:*:*:*","matchCriteriaId":"F7560131-A6AC-4BBB-AA2D-C7C63AB51226"},{"vulnerable":true,"criteria":"cpe:2.3:a:bea:weblogic_server:8.1:sp1:win32:*:*:*:*:*","matchCriteriaId":"349036A0-B5E2-4656-8D2D-26BEE9EF9DFB"},{"vulnerable":true,"criteria":"cpe:2.3:a:bea:weblogic_server:8.1:sp2:*:*:*:*:*:*","matchCriteriaId":"D18E22CC-A0FC-4BC7-AD39-2645F57486C1"},{"vulnerable":true,"criteria":"cpe:2.3:a:bea:weblogic_server:8.1:sp2:express:*:*:*:*:*","matchCriteriaId":"893C2387-03E3-4F8E-9029-BC64C64239EF"},{"vulnerable":true,"criteria":"cpe:2.3:a:bea:weblogic_server:8.1:sp2:win32:*:*:*:*:*","matchCriteriaId":"D00633D1-4B38-48D9-B5CD-E8D66EA90599"}]}]}],"references":[{"url":"http://dev2dev.bea.com/resourcelibrary/advisoriesnotifications/BEA04_57.00.jsp","source":"cve@mitre.org"},{"url":"http://www.kb.cert.org/vuls/id/658878","source":"cve@mitre.org","tags":["Third Party Advisory","US Government Resource"]},{"url":"http://www.securityfocus.com/bid/10185","source":"cve@mitre.org","tags":["Patch","Vendor Advisory"]},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/15928","source":"cve@mitre.org"},{"url":"http://dev2dev.bea.com/resourcelibrary/advisoriesnotifications/BEA04_57.00.jsp","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.kb.cert.org/vuls/id/658878","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","US Government Resource"]},{"url":"http://www.securityfocus.com/bid/10185","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/15928","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}