Description

Red Hat JBoss Enterprise Application Platform (JBEAP) 6.2.0 and JBoss WildFly Application Server, when run under a security manager, do not properly restrict access to the Modular Service Container (MSC) service registry, which allows local users to modify the server via a crafted deployment.

Remediation

References

CVE-2014-0018

Related Vulnerabilities

Dolibarr Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-16687)

WordPress 4.3 Multiple Vulnerabilities (0.7 - 4.3)

WordPress 6.2.x Shortcode Execution (6.2 - 6.2.1)

WordPress 4.4.x Multiple Vulnerabilities (4.4 - 4.4.9)

WordPress Plugin Anti-Splog Cross-Site Scripting (2.1.7)

Severity

Low

Classification

CVE-2014-0018 CWE-264

Tags

Missing Update Known Vulnerabilities