Vulnerability in Redhat Jboss_enterprise_application_platform
CVE-2012-1167
The JBoss Server in JBoss Enterprise Application Platform 5.1.x before 5.1.2 and 5.2.x before 5.2.2, Web Platform before 5.1.2, BRMS Platform before 5.3.0, and SOA Platform before 5.3.0, when the server is configured to use the JaccAuthori…
EPSS: 0.008 (74.8th percentile) — read the EPSS interpretation.
Affected products
- Redhat Jboss_enterprise_application_platform — versions 5.1.0, 5.1.1, 5.2.0
- Redhat Jboss_enterprise_brms_platform
- Redhat Jboss_enterprise_soa_platform — versions 5.0.0, 5.0.1, 5.0.2
- Redhat Jboss_enterprise_web_platform — versions 5.1.0
- N/a — versions n/a
Weakness classification (CWE)
References
- secalert@redhat.com (x_refsource_MISC)
- RHSA-2012:1028 (x_refsource_REDHAT, vendor-advisory)
- 49658 (x_refsource_SECUNIA, third-party-advisory, Vendor Advisory)
- 49635 (x_refsource_SECUNIA, third-party-advisory, Vendor Advisory)
- RHSA-2012:1027 (x_refsource_REDHAT, vendor-advisory, Vendor Advisory)
- RHSA-2012:1013 (x_refsource_REDHAT, vendor-advisory, Vendor Advisory)
- jboss-jacc-security-bypass(76680) (vdb-entry, x_refsource_XF)
- RHSA-2012:1026 (x_refsource_REDHAT, vendor-advisory, Vendor Advisory)
- 50549 (x_refsource_SECUNIA, third-party-advisory, Vendor Advisory)
- RHSA-2012:1014 (x_refsource_REDHAT, vendor-advisory, Vendor Advisory)