Lucene search

[email protected]NVD:CVE-2012-5626

HistoryJan 23, 2020 - 7:15 p.m.

CVE-2012-5626

2020-01-2319:15:11

[email protected]

web.nvd.nist.gov

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

0.001 Low

EPSS

Percentile

38.9%

JSON

EJB method in Red Hat JBoss BRMS 5; Red Hat JBoss Enterprise Application Platform 5; Red Hat JBoss Operations Network 3.1; Red Hat JBoss Portal 4 and 5; Red Hat JBoss SOA Platform 4.2, 4.3, and 5; in Red Hat JBoss Enterprise Web Server 1 ignores roles specified using the @RunAs annotation.

Affected configurations

NVD

Node

redhatjboss_brmsMatch5

redhatjboss_enterprise_application_platformMatch5.0.0

redhatjboss_enterprise_web_serverMatch1.0.0

redhatjboss_operations_networkMatch3.1

redhatjboss_portalMatch4.0.0

redhatjboss_portalMatch5.0.0

redhatjboss_soa_platformMatch4.2

redhatjboss_soa_platformMatch4.3

redhatjboss_soa_platformMatch5

References

access.redhat.com/security/cve/cve-2012-5626

bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-5626

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

0.001 Low

EPSS

Percentile

38.9%

JSON

Related for NVD:CVE-2012-5626

prion1 ubuntucve1 cvelist1 cve1