CVE-2011-4573
3.5 Low
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:S/C:N/I:P/A:N
6.5 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
39.9%
Red Hat JBoss Operations Network (JON) before 2.4.2 does not properly enforce โmodify resourceโ permissions for remote authenticated users when deleting a plug-in configuration update from the group connection properties history, which prevents such activities from being recorded in the audit trail.
Affected configurations
Related
3.5 Low
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:S/C:N/I:P/A:N
6.5 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
39.9%