Описание
It was found that the improper default permissions on /tmp/auth directory in JBoss Enterprise Application Platform before 7.1.0 can allow any local user to connect to CLI and allow the user to execute any arbitrary operations.
Ссылки
- Vendor Advisory
- Issue TrackingVendor Advisory
- Vendor Advisory
- Issue TrackingVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 7.1.0 (исключая)
cpe:2.3:a:redhat:jboss_enterprise_application_platform:*:*:*:*:*:*:*:*
EPSS
Процентиль: 7%
0.00027
Низкий
7.8 High
CVSS3
4.6 Medium
CVSS2
Дефекты
CWE-266
CWE-275
Связанные уязвимости
redhat
около 8 лет назад
It was found that the improper default permissions on /tmp/auth directory in JBoss Enterprise Application Platform before 7.1.0 can allow any local user to connect to CLI and allow the user to execute any arbitrary operations.
CVSS3: 7.8
github
больше 3 лет назад
It was found that the improper default permissions on /tmp/auth directory in JBoss Enterprise Application Platform before 7.1.0 can allow any local user to connect to CLI and allow the user to execute any arbitrary operations.
EPSS
Процентиль: 7%
0.00027
Низкий
7.8 High
CVSS3
4.6 Medium
CVSS2
Дефекты
CWE-266
CWE-275