CVE-2014-0018 in JBoss Enterprise Application Platforminfo

Summary

Red Hat JBoss Enterprise Application Platform (JBEAP) 6.2.0 and JBoss WildFly Application Server, when run under a security manager, do not properly restrict access to the Modular Service Container (MSC) service registry, which allows local users to modify the server via a crafted deployment.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Reservation

12/03/2013

Disclosure

02/14/2014

Status

Confirmed

Entries

VulDB provides additional information and datapoints for this CVE:

IDVulnerabilityCWEExpCouCVE
11989Red Hat JBoss Enterprise Application Platform MSC Service Registry Permission access control264UnprovenOfficial fixCVE-2014-0018

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

Sources

PreviousOverviewNext

Might our Artificial Intelligence support you?

Check our Alexa App!