CVE-2014-8120

high

Description

The agent in Thermostat before 1.0.6, when using unspecified configurations, allows local users to obtain the JMX management URLs of all local Java virtual machines and gain privileges via unknown vectors.

References

http://rhn.redhat.com/errata/RHSA-2014-2000.html

http://icedtea.classpath.org/pipermail/thermostat-announce/2014-December/000013.html

Details

Source: Mitre, NVD

Published: 2014-12-18

Updated: 2023-02-13

Risk Information

CVSS v2

Base Score: 4.4

Vector: CVSS2#AV:L/AC:M/Au:N/C:P/I:P/A:P

Severity: Medium

CVSS v3

Base Score: 7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Severity: High

Detections

Analytics