Jboss Operations Network@3.1.2 Security Vulnerabilities and Issues — Jboss Operations Network@3.1.2 CVE List

Lucene search

RedhatJboss Operations Network3.1.2

5 matches found

CVE•added 2013/07/23 11:3 a.m.•150 views

CVE-2013-2165

ResourceBuilderImpl.java in the RichFaces 3.x through 5.x implementation in Red Hat JBoss Web Framework Kit before 2.3.0, Red Hat JBoss Web Platform through 5.2.0, Red Hat JBoss Enterprise Application Platform through 4.3.0 CP10 and 5.x through 5.2.0, Red Hat JBoss BRMS through 5.3.1, Red Hat JBoss...

7.5CVSS9.6AI score0.34143EPSS

CVE•added 2016/09/27 3:59 p.m.•45 views

CVE-2016-6330

The server in Red Hat JBoss Operations Network (JON), when SSL authentication is not configured for JON server / agent communication, allows remote attackers to execute arbitrary code via a crafted HTTP request, related to message deserialization. NOTE: this vulnerability exists because of an incom...

9.8CVSS9.8AI score0.10009EPSS

CVE•added 2013/10/24 3:48 a.m.•42 views

CVE-2013-4293

The server in Red Hat JBoss Operations Network (JON) 3.1.2 logs passwords in plaintext, which allows local users to obtain sensitive information by reading the log files.

2.1CVSS5.9AI score0.00049EPSS

CVE•added 2013/10/24 3:48 a.m.•40 views

CVE-2013-4373

The storeFiles method in JPADriftServerBean in Red Hat JBoss Operations Network (JON) 3.1.2 allows local users to load arbitrary drift files into a server by writing the files to the temporary directory that is used to unpack zip files.

3.2CVSS6.6AI score0.00051EPSS

CVE•added 2013/12/24 7:55 p.m.•39 views

CVE-2013-4452

Red Hat JBoss Operations Network 3.1.2 uses world-readable permissions for the (1) server and (2) agent configuration files, which allows local users to obtain authentication credentials and other unspecified sensitive information by reading these files.

2.1CVSS6.3AI score0.00054EPSS