CVE-2010-0737

high

Description

A missing permission check was found in The CLI in JBoss Operations Network before 2.3.1 does not properly check permissions, which allows JBoss ON users to perform management tasks and configuration changes with the privileges of the administrator user.

References

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2010-0737

Details

Source: Mitre, NVD

Published: 2019-10-30

Updated: 2019-11-05

Risk Information

CVSS v2

Base Score: 5.2

Vector: CVSS2#AV:A/AC:L/Au:S/C:P/I:P/A:P

Severity: Medium

CVSS v3

Base Score: 8

Vector: CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Severity: High

EPSS

EPSS: 0.00139

Detections

Analytics