CVE-2013-2102 - CERT CVE
ID CVE-2013-2102
Sažetak The default configuration of Red Hat JBoss Portal before 6.1.0 enables the JGroups diagnostics service with no authentication when a JGroups channel is started, which allows remote attackers to obtain sensitive information (diagnostics) by accessing the service.
Reference
CVSS
Base: 3.3
Impact: 2.9
Exploitability:6.5
Pristup
VektorSloženostAutentikacija
ADJACENT_NETWORK LOW NONE
Impact
PovjerljivostCjelovitostDostupnost
PARTIAL NONE NONE
CVSS vektor AV:A/AC:L/Au:N/C:P/I:N/A:N
Zadnje važnije ažuriranje 30-10-2013 - 14:46
Objavljeno 28-10-2013 - 21:55