CVE-2012-1154
CVSS v2.0
4.3 (Medium)
EPSS
0.55 % (78th)
Affected Products
2
Advisories
1
mod_cluster 1.0.10 before 1.0.10 CP03 and 1.1.x before 1.1.4, as used in JBoss Enterprise Application Platform 5.1.2, when "ROOT" is set to excludedContexts, exposes the root context of the server, which allows remote attackers to bypass access restrictions and gain access to applications deployed on the root context via unspecified vectors.
Weaknesses
- CWE-264
- Permissions, Privileges, and Access Controls
- CVE Status
- PUBLISHED
- CNA
- Red Hat, Inc.
- Published Date
-
2012-10-22 23:55:05
(12 years ago) - Updated Date
-
2012-11-08 05:00:00
(12 years ago)
Affected Products
Loading...
Loading...
Configuration #1
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...