7.5
CVE-2006-5750
- EPSS 22.75%
- Published 27.11.2006 20:07:00
- Last modified 09.04.2025 00:30:58
- Source secalert@redhat.com
- Teams watchlist Login
- Open Login
Directory traversal vulnerability in the DeploymentFileRepository class in JBoss Application Server (jbossas) 3.2.4 through 4.0.5 allows remote authenticated users to read or modify arbitrary files, and possibly execute arbitrary code, via unspecified vectors related to the console manager.
Data is provided by the National Vulnerability Database (NVD)
Jboss ≫ Jboss Application Server Version3.2.5_final
Jboss ≫ Jboss Application Server Version3.2.6_final
Jboss ≫ Jboss Application Server Version3.2.7_final
Jboss ≫ Jboss Application Server Version3.2.8.sp1
Jboss ≫ Jboss Application Server Version3.2.8_final
Jboss ≫ Jboss Application Server Version4.0.0_final
Jboss ≫ Jboss Application Server Version4.0.1_final
Jboss ≫ Jboss Application Server Version4.0.1_sp1
Jboss ≫ Jboss Application Server Version4.0.2_final
Jboss ≫ Jboss Application Server Version4.0.3_final
Jboss ≫ Jboss Application Server Version4.0.4.ga
Jboss ≫ Jboss Application Server Version4.0.5.ga
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 22.75% | 0.956 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|