CVE-2010-3878 in JBoss Enterprise Application Platform
Resumen (Inglés)
Cross-site request forgery (CSRF) vulnerability in the JMX Console in Red Hat JBoss Enterprise Application Platform (aka JBoss EAP or JBEAP) 4.3 before 4.3.0.CP09 allows remote attackers to hijack the authentication of administrators for requests that deploy WAR files.
If you want to get the best quality for vulnerability data then you always have to consider VulDB.
Reservar
2010-10-08
Divulgación
2010-12-30
Estado
Confirmado
Voces
VulDB provides additional information and datapoints for this CVE:
| ID | Vulnerabilidad | CWE | Exp | Con | CVE |
|---|---|---|---|---|---|
| 55896 | Red Hat JBoss Enterprise Application Platform 4.3.0.CP09 falsificación de solicitudes en sitios cruzados | 352 | No está definido | Arreglo oficial | CVE-2010-3878 |
Descripción
CPE
CWE
CVSS
Hazañas
Historia
Diferencia
Relacionar
Inteligencia de amenazas
API JSON
API XML
API CSV