Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
GlassFish Improper Authentication Vulnerability - CVE-2017-1000030 - Vulnerability Database
GlassFish

GlassFish Improper Authentication Vulnerability - CVE-2017-1000030

Critical
Reference: CVE-2017-1000030
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2017-1000030
Title: GlassFish Improper Authentication Vulnerability
Overview:

Oracle GlassFish Server Open Source Edition 3.0.1 (build 22) is vulnerable to Java Key Store Password Disclosure vulnerability that makes it possible to provide an unauthenticated attacker plain text password of administrative user and grant access to the web-based administration interface.