Lucene search
K

6 matches found

NVD
NVD
added 2014/08/19 6:55 p.m.24 views

CVE-2014-3472

The isCallerInRole function in SimpleSecurityManager in JBoss Application Server AS 7, as used in Red Hat JBoss Enterprise Application Platform JBEAP 6.3.0, does not properly check caller roles, which allows remote authenticated users to bypass access restrictions via unspecified vectors...

4.9CVSS6.1AI score0.01681EPSS
Exploits0References7
CVE
CVE
added 2014/08/19 6:0 p.m.69 views

CVE-2014-3472

The CVE-2014-3472 issue affects JBoss AS 7 as used in JBoss EAP/JBEAP (specifically 6.3.0). The root cause is an improper caller role check in SimpleSecurityManager.isCallerInRole, allowing remote authenticated users to bypass access restrictions via unspecified vectors. Documents consistently de...

4.9CVSS8.6AI score0.01681EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2014/08/19 6:0 p.m.29 views

CVE-2014-3472

The isCallerInRole function in SimpleSecurityManager in JBoss Application Server AS 7, as used in Red Hat JBoss Enterprise Application Platform JBEAP 6.3.0, does not properly check caller roles, which allows remote authenticated users to bypass access restrictions via unspecified vectors...

6.1AI score0.01681EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2014/08/08 12:0 a.m.279 views

RHEL 6 : Red Hat JBoss Enterprise Application Platform 6.3.0 update (Important) (RHSA-2014:1020)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2014:1020 advisory. Red Hat JBoss Enterprise Application Platform 6 is a platform for Java applications based on JBoss Application Server 7. A race condition...

6.8CVSS7.3AI score0.85744EPSS
Exploits5References55
Tenable Nessus
Tenable Nessus
added 2014/08/08 12:0 a.m.55 views

RHEL 5 : Red Hat JBoss Enterprise Application Platform 6.3.0 update (Important) (RHSA-2014:1019)

The remote Redhat Enterprise Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2014:1019 advisory. Red Hat JBoss Enterprise Application Platform 6 is a platform for Java applications based on JBoss Application Server 7. A race condition...

6.8CVSS7.3AI score0.85744EPSS
Exploits5References55
RedHat Linux
RedHat Linux
added 2014/08/06 3:3 p.m.88 views

Important: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 6.3.0 update

Updated Red Hat JBoss Enterprise Application Platform 6.3.0 packages that fix multiple security issues, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having Important security impact. Common...

6.8CVSS7AI score0.85744EPSS
Exploits5References47
Rows per page
Query Builder