Lucene search
HistoryMar 02, 2007 - 9:18 p.m.
CVE-2007-1157
cve
2007
1157
cross-site request forgery
csrf
vulnerability
jboss
nvd
6.9 Medium
AI Score
Confidence
Low
7.6 High
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:C/I:C/A:C
0.002 Low
EPSS
Percentile
59.7%
Cross-site request forgery (CSRF) vulnerability in jmx-console/HtmlAdaptor in JBoss allows remote attackers to perform privileged actions as administrators via certain MBean operations, a different vulnerability than CVE-2006-3733.
| CPE | Name | Operator | Version |
|---|---|---|---|
| jboss:jboss | jboss | eq | * |
Related
prion
prion
Cross site request forgery (csrf)
2007-03-02 21:18:00
securityvulns
securityvulns
JBoss insecure defaults
2007-02-23 00:00:00
saint
saint
CS-MARS JBoss jmx-console access
2006-07-26 00:00:00
CS-MARS JBoss jmx-console access
2006-07-26 00:00:00
CS-MARS JBoss jmx-console access
2006-07-26 00:00:00
cve
cve
CVE-2006-3733
2006-07-21 14:03:00
6.9 Medium
AI Score
Confidence
Low
7.6 High
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:C/I:C/A:C
0.002 Low
EPSS
Percentile
59.7%
Related for CVE-2007-1157