Is CVE-2003-0733 actively exploited?

CVE-2003-0733 has no public evidence of in-the-wild exploitation as of 2026-04-16.

What is the CVSS score for CVE-2003-0733?

CVE-2003-0733 has a CVSS score of 6.8 (UNKNOWN severity). Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P.

How do I patch CVE-2003-0733?

Patch guidance is available from bea security advisories. CVEDatabase generates AI-assisted remediation guidance on demand for CVE-2003-0733.

CVE-2003-0733 - remediation guidance & executive summary

Q: Which products are affected by CVE-2003-0733?

5 products: bea liquid data, bea weblogic integration, bea weblogic integration, bea weblogic server, bea weblogic server.

Description

Multiple cross-site scripting (XSS) vulnerabilities in WebLogic Integration 7.0 and 2.0, Liquid Data 1.1, and WebLogic Server and Express 5.1 through 7.0, allow remote attackers to execute arbitrary web script and steal authentication credentials via (1) a forward instruction to the Servlet container or (2) other vulnerabilities in the WebLogic Server console application.

CVSS Metrics

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Access Vector: network
Access Cmplx: medium
Auth: none
Confidentiality: partial
Integrity: partial
Availability: partial
Weaknesses: NVD-CWE-Other

Metadata

Primary Vendor: BEA
Published: 10/20/2003
Last Modified: 4/16/2026
Source: NIST NVD
Note: Verify all details with official vendor sources before applying patches.

Affected Products

bea : liquid_databea : weblogic_integrationbea : weblogic_integrationbea : weblogic_serverbea : weblogic_server

Remediation Guidance

Executive Summary

Cite this page

CVE-2003-0733. CVEDatabase.com. Retrieved 1 May 2026. https://cvedatabase.com/cve/CVE-2003-0733

View on NIST NVD

CVE-2003-0733 vulnerability