The host is installed with oracle WebLogic through 10.3.6.0 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to handle WLS-Web services issue. Successful exploitation allows an attacker to partially access data.