Lucene search
K

3 matches found

RedHat Linux
RedHat Linux
added 2012/12/18 10:43 p.m.7 views

JBoss Enterprise Application Platform: org.jboss.as.ejb3: JBoss Enterprise Application Platform: Access restriction bypass via improper EJB method authorization

A flaw was found in JBoss Enterprise Application Platform. The processInvocation function within the org.jboss.as.ejb3.security.AuthorizationInterceptor component incorrectly authorizes all requests when no roles are defined for an Enterprise Java Beans EJB method invocation. This allows attacker...

6.5CVSS5.7AI score0.013EPSS
Exploits1References7
RedHat Linux
RedHat Linux
added 2012/12/18 10:23 p.m.9 views

JBoss Enterprise Application Platform: org.jboss.as.ejb3: JBoss Enterprise Application Platform: Access restriction bypass via improper EJB method authorization

A flaw was found in JBoss Enterprise Application Platform. The processInvocation function within the org.jboss.as.ejb3.security.AuthorizationInterceptor component incorrectly authorizes all requests when no roles are defined for an Enterprise Java Beans EJB method invocation. This allows attacker...

6.5CVSS5.7AI score0.013EPSS
Exploits1References7
RedHat Linux
RedHat Linux
added 2012/12/18 10:17 p.m.8 views

JBoss Enterprise Application Platform: org.jboss.as.ejb3: JBoss Enterprise Application Platform: Access restriction bypass via improper EJB method authorization

A flaw was found in JBoss Enterprise Application Platform. The processInvocation function within the org.jboss.as.ejb3.security.AuthorizationInterceptor component incorrectly authorizes all requests when no roles are defined for an Enterprise Java Beans EJB method invocation. This allows attacker...

6.5CVSS5.7AI score0.013EPSS
Exploits1References7
Rows per page
Query Builder