Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Jboss EAP Permissions Privileges and Access Controls Vulnerability - CVE-2015-5304 - Vulnerability Database
Jboss EAP

Jboss EAP Permissions Privileges and Access Controls Vulnerability - CVE-2015-5304

Low
Reference: CVE-2015-5304
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2015-5304
Title: Jboss EAP Permissions Privileges and Access Controls Vulnerability
Overview:

Red Hat JBoss Enterprise Application Platform (EAP) before 6.4.5 does not properly authorize access to shut down the server which allows remote authenticated users with the Monitor Deployer or Auditor role to cause a denial of service via unspecified vectors.