CVE-2016-8627 in JBoss Enterprise Application Platform정보

요약

\~에 의해 MITRE

admin-cli before versions 3.0.0.alpha25, 2.2.1.cr2 is vulnerable to an EAP feature to download server log files that allows logs to be available via GET requests making them vulnerable to cross-origin attacks. An attacker could trigger the user's browser to request the log files consuming enough resources that normal server functioning could be impaired.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

책임이 있는

Red Hat, Inc.

예약하다

2016. 10. 12.

공개

2018. 05. 11.

모더레이션

수락

항목

VDB-95800

CPE

준비됨

CWE

CWE-400 (확인됨)

CVSS

6.5 (NVD)

EPSS

0.00801

KEV

아니요

활동

매우 낮음

부문

Police, Hospital, ...

출처

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-8627
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-8627
CVE Details	https://www.cvedetails.com/cve/CVE-2016-8627/

◂ 이전 개요 다음 ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!