WEB APPLICATION VULNERABILITIES Standard & Premium

Jboss EAP CVE-2017-12189 Vulnerability (CVE-2017-12189)

Description

It was discovered that the jboss init script as used in Red Hat JBoss Enterprise Application Platform 7.0.7.GA performed unsafe file handling which could result in local privilege escalation. This issue is a result of an incomplete fix for CVE-2016-8656.

Remediation

References

Related Vulnerabilities

Apache HTTP Server Insufficient Verification of Data Authenticity Vulnerability (CVE-2022-31813)

WordPress Plugin Best WordPress FAQ Cross-Site Scripting (1.4.8)

Oracle Database Server CVE-2014-6453 Vulnerability (CVE-2014-6453)

Joomla Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2020-35614)

WordPress Plugin NextGEN Gallery-WordPress Gallery 'swfupload.swf' Cross-Site Scripting (1.9.7)

Severity

High

Classification

CVE-2017-12189 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities