CVE-2016-7043 in Red Hat KIE Serverinfo

Summary

It has been reported that KIE server and Busitess Central before version 7.21.0.Final contain username and password as plaintext Java properties. Any app deployed on the same server would have access to these properties, thus granting access to ther services.

Responsible

Red Hat, Inc.

Reservation

08/23/2016

Entries

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerability	CWE	Exp	Cou	CVE
135063	Red Hat KIE Server/Business Central Password Storage credentials management	255	Not defined	Official fix	CVE-2016-7043

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

◂ PreviousOverviewNext ▸

Do you need the next level of professionalism?

Upgrade your account now!