Jboss EAP Permissions Privileges and Access Controls Vulnerability - CVE-2014-0005 - Vulnerability Database

Jboss EAP Permissions Privileges and Access Controls Vulnerability - CVE-2014-0005

Low

Reference: CVE-2014-0005

NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2014-0005

Title: Jboss EAP Permissions Privileges and Access Controls Vulnerability

Overview:

PicketBox and JBossSX as used in Red Hat JBoss Enterprise Application Platform (JBEAP) 6.2.2 and JBoss BRMS before 6.0.3 roll up patch 2 allows remote authenticated users to read and modify the application sever configuration and state by deploying a crafted application.