CVE-2013-4373
- EPSS 0.05%
- Veröffentlicht 24.10.2013 03:48:48
- Zuletzt bearbeitet 11.04.2025 00:51:21
The storeFiles method in JPADriftServerBean in Red Hat JBoss Operations Network (JON) 3.1.2 allows local users to load arbitrary drift files into a server by writing the files to the temporary directory that is used to unpack zip files.
CVE-2013-4293
- EPSS 0.05%
- Veröffentlicht 24.10.2013 03:48:46
- Zuletzt bearbeitet 11.04.2025 00:51:21
The server in Red Hat JBoss Operations Network (JON) 3.1.2 logs passwords in plaintext, which allows local users to obtain sensitive information by reading the log files.
CVE-2013-2165
- EPSS 25.71%
- Veröffentlicht 23.07.2013 11:03:11
- Zuletzt bearbeitet 11.04.2025 00:51:21
ResourceBuilderImpl.java in the RichFaces 3.x through 5.x implementation in Red Hat JBoss Web Framework Kit before 2.3.0, Red Hat JBoss Web Platform through 5.2.0, Red Hat JBoss Enterprise Application Platform through 4.3.0 CP10 and 5.x through 5.2.0...
CVE-2011-3206
- EPSS 0.36%
- Veröffentlicht 08.01.2012 00:55:01
- Zuletzt bearbeitet 11.04.2025 00:51:21
Multiple cross-site scripting (XSS) vulnerabilities in the administration interface in RHQ 4.2.0, as used in JBoss Operations Network (aka JON or JBoss ON) before 3.0, allow remote attackers to inject arbitrary web script or HTML via unspecified vect...