Описание
It was found that the log file viewer in Red Hat JBoss Enterprise Application 6 and 7 allows arbitrary file read to authenticated user via path traversal.
It was found that the log file viewer in Red Hat JBoss Enterprise Application 6 and 7 allows arbitrary file read to authenticated user via path traversal.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2017-2595
- https://access.redhat.com/errata/RHSA-2017:1410
- https://access.redhat.com/errata/RHSA-2017:1411
- https://access.redhat.com/errata/RHSA-2017:1412
- https://access.redhat.com/errata/RHSA-2017:1548
- https://access.redhat.com/errata/RHSA-2017:1549
- https://access.redhat.com/errata/RHSA-2017:1550
- https://access.redhat.com/errata/RHSA-2017:1552
- https://access.redhat.com/errata/RHSA-2017:3454
- https://access.redhat.com/errata/RHSA-2017:3455
- https://access.redhat.com/errata/RHSA-2017:3456
- https://access.redhat.com/errata/RHSA-2017:3458
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-2595
- http://rhn.redhat.com/errata/RHSA-2017-1409.html
- http://rhn.redhat.com/errata/RHSA-2017-1551.html
- http://www.securityfocus.com/bid/98967
- http://www.securitytracker.com/id/1038757
Связанные уязвимости
CVSS3: 7.7
redhat
больше 8 лет назад
It was found that the log file viewer in Red Hat JBoss Enterprise Application 6 and 7 allows arbitrary file read to authenticated user via path traversal.
CVSS3: 7.7
nvd
больше 7 лет назад
It was found that the log file viewer in Red Hat JBoss Enterprise Application 6 and 7 allows arbitrary file read to authenticated user via path traversal.
CVSS3: 7.7
debian
больше 7 лет назад
It was found that the log file viewer in Red Hat JBoss Enterprise Appl ...