Description

PicketBox, as used in Red Hat JBoss Enterprise Application Platform before 6.1.1, allows local users to obtain the admin encryption key by reading the Vault data file.

Remediation

References

CVE-2013-1921

Related Vulnerabilities

WordPress Plugin WP Crontrol Cross-Site Scripting (1.2.3)

OpenSSL Improper Authentication Vulnerability (CVE-2009-0591)

PostgreSQL CVE-2017-7548 Vulnerability (CVE-2017-7548)

WordPress Plugin WP Symposium SQL Injection (15.1)

WordPress Plugin TR Easy Google Analytics Cross-Site Scripting (1.0.0)

Severity

Low

Classification

CVE-2013-1921

Tags

Missing Update Known Vulnerabilities