Information Disclosure

🗓️ 10 Apr 2020 00:42:53Reported by Veracode Vulnerability DatabaseType

veracode🔗 sca.analysiscenter.veracode.com👁 51 Views

JMX-console vulnerability fixed, authentication requirement update

Reporter	Title	Published	Views	Family All 82
0day.today	JBoss, JMX Console, misconfigured DeploymentScanner	2 Oct 201100:00	–	zdt
0day.today	Hewlett-Packard UCMDB 10.10 JMX-Console Authentication Bypass Vulnerability	4 Feb 201500:00	–	zdt
Tenable Nessus	JBoss EAP < 4.2.0.CP09 / 4.3.0.CP08 Multiple Vulnerabilities	29 Apr 201000:00	–	nessus
Tenable Nessus	HP-UX PHSS_42328 : s700_800 11.X OV NNM9.00 NNM 9.0x Patch 5	6 Mar 201200:00	–	nessus
Tenable Nessus	JBoss Enterprise Application Platform '/jmx-console' Authentication Bypass	8 Apr 201100:00	–	nessus
Tenable Nessus	Juniper Junos Space < 13.3R1.8 Multiple Vulnerabilities (JSA10627)	22 Dec 201400:00	–	nessus
Tenable Nessus	RHEL 4 : JBoss EAP (RHSA-2010:0376)	24 Jan 201300:00	–	nessus
Tenable Nessus	RHEL 4 : JBoss EAP (RHSA-2010:0377)	24 Jan 201300:00	–	nessus
Tenable Nessus	RHEL 5 : JBoss EAP (RHSA-2010:0378)	24 Jan 201300:00	–	nessus
Tenable Nessus	RHEL 5 : JBoss Enterprise Application Platform 4.3.0.CP08 update (Critical) (RHSA-2010:0379)	24 Jan 201300:00	–	nessus

Vulners

Node

hibernate3-annotations hibernate3-annotationsMatch3.2.1_1.patch02.1jpp.ep1.2.el4

hibernate3-annotations hibernate3-annotationsMatch3.2.1_1.patch02.1jpp.ep1.2.el5.1

hibernate3-annotations hibernate3-annotationsMatch3.2.1_1.patch01.1jpp.ep1.3.el5

jboss-seam jboss-seamMatch1.2.1_1.ep1.3.el4

jboss-seam jboss-seamMatch1.2.1_1.ep1.2.el5

jboss-seam jboss-seamMatch1.2.1_1.ep1.3.el5

jboss-seam jboss-seamMatch1.2.0_1.ap.ep1.19.el5

rh-eap-docs rh-eap-docsMatch4.2.0_3.ga_cp02.ep1.1.el4

rh-eap-docs rh-eap-docsMatch4.2.0_2.cp01.ep1.2.el5

rh-eap-docs rh-eap-docsMatch4.2.0_3.ga_cp02.ep1.1.el5.1

rh-eap-docs rh-eap-docsMatch4.2.0_1.ep1.22.el5

jboss-aop jboss-aopMatch1.5.5_1.cp01.0jpp.ep1.1.el4

jboss-aop jboss-aopMatch1.5.5_0jpp.ep1.2.el5.1

jboss-aop jboss-aopMatch1.5.5_1.cp01.0jpp.ep1.1.el5

hibernate3 hibernate3Match3.2.4_1.sp1_cp02.0jpp.ep1.1.el4

hibernate3 hibernate3Match3.2.4_1.sp1_cp02.0jpp.ep1.1.el5.1

hibernate3 hibernate3Match3.2.4_1.sp1_cp01.0jpp.ep1.1.el5.1

jbossas jbossasMatch4.0.4_1.el4s1.20

jbossas jbossasMatch4.0.5_1.el4s1.5

jbossas jbossasMatch4.0.5_2.cp04.el4s1.2

jbossas jbossasMatch4.2.0_6.ga_cp09.11.ep1.el4

jbossas jbossasMatch4.2.0_3.ga_cp02.ep1.3.el4

jbossas jbossasMatch4.0.4_1.el4s1.25

jbossas jbossasMatch4.2.0_6.ga_cp09.11.1.ep1.el5

jbossas jbossasMatch4.2.0_4.ga_cp02.ep1.3.el5.3

jbossas jbossasMatch4.2.0_1.ep1.9.el5

jbossas jbossasMatch4.2.0_2.cp01.ep1.3.el5

jboss-seam2 jboss-seam2Match2.0.2.fp_sec1_1.ep2.7.el4

jboss-seam2 jboss-seam2Match2.0.2.fp_sec1_1.ep2.4.el4

jboss-seam2 jboss-seam2Match2.0.2.fp_sec1_1.ep2.6.el4

jboss-seam2 jboss-seam2Match2.0.2.fp_sec1_1.ep2.7.el5

jboss-seam2 jboss-seam2Match2.0.2.fp_sec1_1.ep2.6.el5

jboss-seam2 jboss-seam2Match2.0.2.fp_sec1_1.ep2.3.el5

jboss-cache jboss-cacheMatch1.4.1_4.sp8_cp01.1jpp.ep1.1.el4

jboss-cache jboss-cacheMatch1.4.1_4.sp8_cp01.1jpp.ep1.1.el5

jboss-cache jboss-cacheMatch1.4.1_1.sp3.1jpp.ep1.1.el5

jboss jboss-remotingMatch2.2.2_3.sp4.0jpp.ep1.1.el5

jboss jboss-remotingMatch2.2.2_1jpp.ep1.5.el5

redhat jbosswebMatch2.0.0_2.cp01.0jpp.ep1.4.el5

redhat jbosswebMatch2.0.0_3.cp05.0jpp.ep1.1.el5

jacorb jacorbMatch2.3.0_1jpp.ep1.1.el5.2

jacorb jacorbMatch2.3.0_1jpp.ep1.5.el5

Source	Link
securitytracker	www.securitytracker.com/id
secunia	www.secunia.com/advisories/39563
securityfocus	www.securityfocus.com/bid/39710
securityreason	www.securityreason.com/securityalert/8408
vupen	www.vupen.com/english/advisories/2010/0992
redhat	www.redhat.com/security/updates/classification/
redhat	www.redhat.com/docs/en-US/JBoss_Enterprise_Application_Platform/4.3.0.cp08/html-single/Release_Notes/index.html
access	www.access.redhat.com/errata/RHSA-2010:0377
public	www.public.support.unisys.com/common/public/vulnerability/NVD_Detail_Rpt.aspx
access	www.access.redhat.com/errata/RHSA-2010:0376

03 Apr 2025 18:58Current

1.5Low risk

Vulners AI Score1.5

CVSS 25

CVSS 3.15.3

EPSS0.91523