CVE-2018-10899
CVSS v3.0
8.8 (High)
CVSS v2.0
6.8 (Medium)
EPSS
0.97 % (84th)
Affected Products
2
Advisories
1
A flaw was found in Jolokia versions from 1.2 to before 1.6.1. Affected versions are vulnerable to a system-wide CSRF. This holds true for properly configured instances with strict checking for origin and referrer headers. This could result in a Remote Code Execution attack.
- CVE Status
- PUBLISHED
- CNA
- Red Hat, Inc.
- Published Date
-
2019-08-01 14:15:11
(5 years ago) - Updated Date
-
2023-11-07 02:51:34
(10 months ago)
Affected Products
Loading...
Loading...
Loading...
Configuration #1
|
Configuration #2
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...