RCE in Redhat Jboss_enterprise_application_platform
CVE-2014-3518
jmx-remoting.sar in JBoss Remoting, as used in Red Hat JBoss Enterprise Application Platform (JEAP) 5.2.0, Red Hat JBoss BRMS 5.3.1, Red Hat JBoss Portal Platform 5.2.2, and Red Hat JBoss SOA Platform 5.3.1, does not properly implement the…
Vulnerability class: RCE (Remote Code Execution)
EPSS: 0.017 (82.4th percentile) — read the EPSS interpretation.
Affected products
- Redhat Jboss_enterprise_application_platform — versions 5.2.0
- Redhat Jboss_enterprise_brms_platform — versions 5.3.1
- Redhat Jboss_enterprise_portal_platform — versions 5.2.2
- Redhat Jboss_enterprise_soa_platform — versions 5.3.1
- N/a — versions n/a
Weakness classification (CWE)
References
- RHSA-2014:0887 (x_refsource_REDHAT, vendor-advisory, Vendor Advisory)