Description

PicketBox, as used in Red Hat JBoss Enterprise Application Platform before 6.1.1, allows local users to obtain the admin encryption key by reading the Vault data file.

Remediation

References

CVE-2013-1921

Related Vulnerabilities

WordPress 4.6.x Multiple Vulnerabilities (4.6 - 4.6.10)

e107 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-2750)

osTicket Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-15362)

WordPress Plugin Events Manager Extended 'admin.php' SQL Injection (3.1.2)

WordPress Plugin WP-Print Cross-Site Request Forgery (2.51)

Severity

Low

Classification

CVE-2013-1921

Tags

Missing Update Known Vulnerabilities