Vulnerability in Redhat Jboss_enterprise_application_platform

CVE-2012-4572

Red Hat JBoss Enterprise Application Platform (EAP) before 6.1.0 and JBoss Portal before 6.1.0 does not load the implementation of a custom authorization module for a new application when an implementation is already loaded and the modules…

EPSS: 0.002 (35.8th percentile) — read the EPSS interpretation.

Affected products

Redhat Jboss_enterprise_application_platform — versions 4.2.0, 4.3.0, 5.0.0
Redhat Jboss_enterprise_portal_platform — versions 4.3.0, 5.0.0, 5.0.1
N/a — versions n/a

Weakness classification (CWE)

CWE-264

References

RHSA-2013:0833 (x_refsource_REDHAT, vendor-advisory, Vendor Advisory)
RHSA-2013:1437 (x_refsource_REDHAT, vendor-advisory, Vendor Advisory)
RHSA-2013:0834 (x_refsource_REDHAT, vendor-advisory, Vendor Advisory)