3 matches found
CVE-2017-2617
The set of connected sources confirms a vulnerability in hawtio prior to version 1.5.5 that allows remote code execution via file upload. An attacker can upload a crafted file to the Hawtio web console, which could be executed on the target host where Hawtio is deployed. Red Hat’s advisory (RHSA-...
Important: Red Hat Security Advisory: Red Hat JBoss Fuse/A-MQ 6.3 R6 security and bug fix update
An update is now available for Red Hat JBoss Fuse and Red Hat JBoss A-MQ. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fro...
CVE-2017-2617
It was found that a flaw in hawtio could cause remote code execution via file upload. An attacker could use this vulnerability to upload crafted file which could be executed on a target machine where hawtio is deployed...