Loading
BEA WebLogic Server and WebLogic Express 6.1 through 10.0 allows remote attackers to bypass authentication for application servlets via crafted request headers.
Cite this page
CVE-2008-0895. CVEDatabase.com. Retrieved 1 May 2026. https://cvedatabase.com/cve/CVE-2008-0895
Use CWE-287, Bea vendor hub and Weblogic Server product page to widen CVE-2008-0895 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2008-3257, CVE-2008-0897 and CVE-2008-0901 for nearby disclosures in the same product family.