CVE-2012-5626

2020-01-2318:10:30

redhat

www.cve.org

0.001 Low

EPSS

Percentile

38.9%

JSON

EJB method in Red Hat JBoss BRMS 5; Red Hat JBoss Enterprise Application Platform 5; Red Hat JBoss Operations Network 3.1; Red Hat JBoss Portal 4 and 5; Red Hat JBoss SOA Platform 4.2, 4.3, and 5; in Red Hat JBoss Enterprise Web Server 1 ignores roles specified using the @RunAs annotation.

CNA Affected

[
  {
    "product": "JBoss BRMS",
    "vendor": "Red Hat",
    "versions": [
      {
        "status": "affected",
        "version": "5"
      }
    ]
  },
  {
    "product": "JBoss Enterprise Application Platform",
    "vendor": "Red Hat",
    "versions": [
      {
        "status": "affected",
        "version": "5"
      }
    ]
  },
  {
    "product": "JBoss Operations Network",
    "vendor": "Red Hat",
    "versions": [
      {
        "status": "affected",
        "version": "3.1"
      }
    ]
  },
  {
    "product": "JBoss Portal",
    "vendor": "Red Hat",
    "versions": [
      {
        "status": "affected",
        "version": "4"
      },
      {
        "status": "affected",
        "version": "5"
      }
    ]
  },
  {
    "product": "JBoss SOA Platform",
    "vendor": "Red Hat",
    "versions": [
      {
        "status": "affected",
        "version": "4.2"
      },
      {
        "status": "affected",
        "version": "4.3"
      },
      {
        "status": "affected",
        "version": "5"
      }
    ]
  },
  {
    "product": "JBoss Enterprise Web Server",
    "vendor": "Red Hat",
    "versions": [
      {
        "status": "affected",
        "version": "1"
      }
    ]
  }
]

References

access.redhat.com/security/cve/cve-2012-5626

bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-5626

0.001 Low

EPSS

Percentile

38.9%

JSON

Related for CVELIST:CVE-2012-5626