Description
Red Hat JBoss Enterprise Application Platform (EAP) before 6.4.5 does not properly authorize access to shut down the server, which allows remote authenticated users with the Monitor, Deployer, or Auditor role to cause a denial of service via unspecified vectors.
Remediation
References
Related Vulnerabilities
MySQL CVE-2012-3156 Vulnerability (CVE-2012-3156)
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-2353)
Chamilo Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2023-4220)
WordPress Plugin InstaWP Connect-1-click WP Staging & Migration Security Bypass (0.1.0.8)