- Home
- CVEs with nessus.description==The remote JBoss server is affected by multiple remote code execution
vulnerabilities :
- A flaw exists due to the JMXInvokerHAServlet and
EJBInvokerHAServlet invoker servlets not properly
restricting access to profiles. A remote attacker can
exploit this issue to bypass authentication and invoke
MBean methods, allowing arbitrary code to be executed
in the context of the user running the server.
(CVE-2012-0874)
- The remote host is affected by a remote code execution
vulnerability due to unsafe deserialize calls of
unauthenticated Java objects to the Apache Commons
Collections (ACC) library. An unauthenticated, remote
attacker can exploit this, by sending a crafted RMI
request, to execute arbitrary code on the target host.
(CVE-2015-7501)
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top