Lucene search
HistoryFeb 14, 2014 - 3:55 p.m.
CVE-2012-0052
red hat
jboss
operations network
jon
cve-2012-0052
security vulnerability
spoofing
nvd
5.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
7 High
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
71.2%
Red Hat JBoss Operations Network (JON) before 2.4.2 and 3.0.x before 3.0.1 does not check the JON agent key, which allows remote attackers to spoof the identity of arbitrary agents via the registered agent name.
Affected configurations
Node
redhatjboss_operations_networkRangeโค2.4.1
ORredhatjboss_operations_networkMatch2.0.0
ORredhatjboss_operations_networkMatch2.0.1
ORredhatjboss_operations_networkMatch2.1.0
ORredhatjboss_operations_networkMatch2.2
ORredhatjboss_operations_networkMatch2.3
ORredhatjboss_operations_networkMatch2.3.1
ORredhatjboss_operations_networkMatch2.4
ORredhatjboss_operations_networkMatch3.0
Related
cvelist
cvelist
CVE-2012-0052
2014-02-14 15:00:00
nvd
nvd
CVE-2012-0052
2014-02-14 15:55:04
prion
prion
Design/Logic Flaw
2014-02-14 15:55:00
seebug
seebug
JBoss Operations Networkๅคไธชๅฎๅ
จ้ๅถ็ป่ฟๆผๆด
2012-02-04 00:00:00
5.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
7 High
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
71.2%
Related for CVE-2012-0052