cvelistv5 - CVE-2007-1354

CVE-2007-1354 (GCVE-0-2007-1354)

Vulnerability from cvelistv5

Published

2007-07-27 21:00

Modified

2024-08-07 12:50

Severity ?

CWE

Summary

The Access Control functionality (JMXOpsAccessControlFilter) in JMX Console in JBoss Application Server 4.0.2 and 4.0.5 before 20070416 uses a member variable to store the roles of the current user, which allows remote authenticated administrators to trigger a race condition and gain privileges by logging in during a session by a more privileged administrator, as demonstrated by privilege escalation from Read Mode to Write Mode.

References

URL	Tags
secalert@redhat.com	http://jira.jboss.com/jira/browse/ASPATCH-172	Patch
secalert@redhat.com	http://jira.jboss.com/jira/browse/ASPATCH-175	Patch
secalert@redhat.com	http://osvdb.org/46765
secalert@redhat.com	http://rhn.redhat.com/errata/RHSA-2007-0151.html	Patch
secalert@redhat.com	http://www.redhat.com/archives/jboss-watch-list/2007-April/msg00000.html	Patch
af854a3a-2127-422b-91ae-364da2661108	http://jira.jboss.com/jira/browse/ASPATCH-172	Patch
af854a3a-2127-422b-91ae-364da2661108	http://jira.jboss.com/jira/browse/ASPATCH-175	Patch
af854a3a-2127-422b-91ae-364da2661108	http://osvdb.org/46765
af854a3a-2127-422b-91ae-364da2661108	http://rhn.redhat.com/errata/RHSA-2007-0151.html	Patch
af854a3a-2127-422b-91ae-364da2661108	http://www.redhat.com/archives/jboss-watch-list/2007-April/msg00000.html	Patch

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T12:50:35.274Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "RHSA-2007:0151",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://rhn.redhat.com/errata/RHSA-2007-0151.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://jira.jboss.com/jira/browse/ASPATCH-172"
          },
          {
            "name": "[jboss-watch-list] 20070416 [RHSA-2007:0151-01] Low: JBoss Application Server security update",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://www.redhat.com/archives/jboss-watch-list/2007-April/msg00000.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://jira.jboss.com/jira/browse/ASPATCH-175"
          },
          {
            "name": "46765",
            "tags": [
              "vdb-entry",
              "x_refsource_OSVDB",
              "x_transferred"
            ],
            "url": "http://osvdb.org/46765"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2007-04-16T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "The Access Control functionality (JMXOpsAccessControlFilter) in JMX Console in JBoss Application Server 4.0.2 and 4.0.5 before 20070416 uses a member variable to store the roles of the current user, which allows remote authenticated administrators to trigger a race condition and gain privileges by logging in during a session by a more privileged administrator, as demonstrated by privilege escalation from Read Mode to Write Mode."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2008-11-13T10:00:00",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "name": "RHSA-2007:0151",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://rhn.redhat.com/errata/RHSA-2007-0151.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://jira.jboss.com/jira/browse/ASPATCH-172"
        },
        {
          "name": "[jboss-watch-list] 20070416 [RHSA-2007:0151-01] Low: JBoss Application Server security update",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://www.redhat.com/archives/jboss-watch-list/2007-April/msg00000.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://jira.jboss.com/jira/browse/ASPATCH-175"
        },
        {
          "name": "46765",
          "tags": [
            "vdb-entry",
            "x_refsource_OSVDB"
          ],
          "url": "http://osvdb.org/46765"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2007-1354",
    "datePublished": "2007-07-27T21:00:00",
    "dateReserved": "2007-03-08T00:00:00",
    "dateUpdated": "2024-08-07T12:50:35.274Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "nvd": "{\"cve\":{\"id\":\"CVE-2007-1354\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2007-07-27T21:30:00.000\",\"lastModified\":\"2025-04-09T00:30:58.490\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"The Access Control functionality (JMXOpsAccessControlFilter) in JMX Console in JBoss Application Server 4.0.2 and 4.0.5 before 20070416 uses a member variable to store the roles of the current user, which allows remote authenticated administrators to trigger a race condition and gain privileges by logging in during a session by a more privileged administrator, as demonstrated by privilege escalation from Read Mode to Write Mode.\"},{\"lang\":\"es\",\"value\":\"La funcionalidad Control de Acceso (JMXOpsAccessControlFilter) en JMX Console de JBoss Application Server 4.0.2 y 4.0.5 versiones anteriores a 20070416 utiliza una variable miembro para almacenar los roles del usuario actual, lo cual permite a administradores remotos autenticados disparar una condici\u00f3n de carrera y obtener privilegios al identificarse en una sesi\u00f3n, por los de otro administrador con m\u00e1s privilegios, como se demuestra con un escalado de privilegios de Modo Lectura a Modo Escritura.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:S/C:P/I:P/A:P\",\"baseScore\":6.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"SINGLE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":6.8,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":true,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-Other\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:jboss:jboss_application_server:4.0.2.ga_cp02:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C7035F76-F6FF-477D-91F4-1663F2008699\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:jboss:jboss_application_server:4.0.2.ga_cp03:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4D882D74-F526-404D-9BB3-88DC3D355FBD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:jboss:jboss_application_server:4.0.2.ga_cp04:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7EAE9B8C-A1BE-42C8-9682-216D27AF7146\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:jboss:jboss_application_server:4.0.5.ga:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2559DFD5-A230-467E-A720-7AE7FA9309CD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:jboss:jboss_application_server:4.0.5_cp01:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DABC5FBF-A500-4A80-885B-FBEACFB7393E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:jboss:jboss_application_server:4.0.5_cp02:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B3F772B0-5BC2-4AE4-AEA7-F22375039025\"}]}]}],\"references\":[{\"url\":\"http://jira.jboss.com/jira/browse/ASPATCH-172\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Patch\"]},{\"url\":\"http://jira.jboss.com/jira/browse/ASPATCH-175\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Patch\"]},{\"url\":\"http://osvdb.org/46765\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2007-0151.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Patch\"]},{\"url\":\"http://www.redhat.com/archives/jboss-watch-list/2007-April/msg00000.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Patch\"]},{\"url\":\"http://jira.jboss.com/jira/browse/ASPATCH-172\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"http://jira.jboss.com/jira/browse/ASPATCH-175\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"http://osvdb.org/46765\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2007-0151.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"http://www.redhat.com/archives/jboss-watch-list/2007-April/msg00000.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]}]}}"
  }
}

RHSA-2007:0151

Vulnerability from csaf_redhat

Published

2007-04-16 14:38

Modified

2025-10-09 12:57

Summary

Red Hat Security Advisory: JBoss Application Server security update

Notes

Topic

Updated versions of JBoss Application Server that fix a security issue are now available. This update has been rated as having low security impact by the Red Hat Security Response Team.

Details

The JBoss Application Server is a powerful J2EE application server. A flaw was found in the JMX Console fine-grained Access Control feature. An administrator with 'Read Mode' privileges to the JMX service could gain additional privileges if another administrator who had 'Write Mode' privileges was logged into and accessed the console at the same time. (CVE-2007-1354) Note: Fine-grained Access Control was first added to JBoss Application Server in June 2006; earlier versions are not affected by this issue. Known vulnerable versions include: JBoss AS 4.0.2.GA_CP02, 4.0.2.GA_CP03, 4.0.2.GA_CP04, 4.0.5.GA, 4.0.5_CP01, and 4.0.5_CP02. This vulnerability is rectified and does not affect JBoss AS releases 5.0.0.Beta2, 4.2.0.GA, 4.0.5.SP1, 3.2.8.SP2, and cumulative patches 4.0.5.GA_CP03, 4.0.2.GA_CP05, 4.0.4.GA_CP06, 4.0.3.SP1_CP05, and 3.2.8.SP1_CP01. Users with an affected installation of JBoss Application Server who rely on granting read-only privileges to the console should upgrade to one of these updated versions.

This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Low"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Updated versions of JBoss Application Server that fix a security issue are\nnow available.\n\nThis update has been rated as having low security impact by the Red Hat\nSecurity Response Team.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "The JBoss Application Server is a powerful J2EE application server.\n\nA flaw was found in the JMX Console fine-grained Access Control feature.\nAn administrator with \u0027Read Mode\u0027 privileges to the JMX service could\ngain additional privileges if another administrator who had \u0027Write Mode\u0027\nprivileges was logged into and accessed the console at the same time.\n(CVE-2007-1354)\n\nNote: Fine-grained Access Control was first added to JBoss Application\nServer in June 2006; earlier versions are not affected by this issue.\n\nKnown vulnerable versions include: JBoss AS 4.0.2.GA_CP02, 4.0.2.GA_CP03,\n4.0.2.GA_CP04, 4.0.5.GA, 4.0.5_CP01, and 4.0.5_CP02.\n\nThis vulnerability is rectified and does not affect JBoss AS releases\n5.0.0.Beta2, 4.2.0.GA, 4.0.5.SP1, 3.2.8.SP2, and cumulative patches\n4.0.5.GA_CP03, 4.0.2.GA_CP05, 4.0.4.GA_CP06, 4.0.3.SP1_CP05, and\n3.2.8.SP1_CP01.\n\nUsers with an affected installation of JBoss Application Server who rely on\ngranting read-only privileges to the console should upgrade to one of these\nupdated versions.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2007:0151",
        "url": "https://access.redhat.com/errata/RHSA-2007:0151"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#low",
        "url": "https://access.redhat.com/security/updates/classification/#low"
      },
      {
        "category": "external",
        "summary": "http://jira.jboss.com/jira/browse/ASPATCH-172",
        "url": "http://jira.jboss.com/jira/browse/ASPATCH-172"
      },
      {
        "category": "external",
        "summary": "http://jira.jboss.com/jira/browse/ASPATCH-175",
        "url": "http://jira.jboss.com/jira/browse/ASPATCH-175"
      },
      {
        "category": "external",
        "summary": "http://wiki.jboss.org/wiki/Wiki.jsp?page=AccessControlForJMXConsole",
        "url": "http://wiki.jboss.org/wiki/Wiki.jsp?page=AccessControlForJMXConsole"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2007/rhsa-2007_0151.json"
      }
    ],
    "title": "Red Hat Security Advisory: JBoss Application Server security update",
    "tracking": {
      "current_release_date": "2025-10-09T12:57:42+00:00",
      "generator": {
        "date": "2025-10-09T12:57:42+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.6.9"
        }
      },
      "id": "RHSA-2007:0151",
      "initial_release_date": "2007-04-16T14:38:00+00:00",
      "revision_history": [
        {
          "date": "2007-04-16T14:38:00+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2007-04-16T10:38:41+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2025-10-09T12:57:42+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "JBoss Application Server 4",
                "product": {
                  "name": "JBoss Application Server 4",
                  "product_id": "JBoss Application Server 4",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:jboss_application_server:4"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat JBoss Application Server"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2007-1354",
      "discovery_date": "2007-03-22T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1618298"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The Access Control functionality (JMXOpsAccessControlFilter) in JMX Console in JBoss Application Server 4.0.2 and 4.0.5 before 20070416 uses a member variable to store the roles of the current user, which allows remote authenticated administrators to trigger a race condition and gain privileges by logging in during a session by a more privileged administrator, as demonstrated by privilege escalation from Read Mode to Write Mode.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "security flaw",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "JBoss Application Server 4"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2007-1354"
        },
        {
          "category": "external",
          "summary": "RHBZ#1618298",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618298"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2007-1354",
          "url": "https://www.cve.org/CVERecord?id=CVE-2007-1354"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2007-1354",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-1354"
        }
      ],
      "release_date": "2007-04-15T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2007-04-16T14:38:00+00:00",
          "details": "Updates are available from the JBoss Customer Support Portal (CSP)\nat https://network.jboss.com/",
          "product_ids": [
            "JBoss Application Server 4"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2007:0151"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "security flaw"
    }
  ]
}

rhsa-2007:0151

Vulnerability from csaf_redhat

Published

2007-04-16 14:38

Modified

2025-10-09 12:57

Summary

Red Hat Security Advisory: JBoss Application Server security update

Notes

Topic

Updated versions of JBoss Application Server that fix a security issue are now available. This update has been rated as having low security impact by the Red Hat Security Response Team.

Details

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Low"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Updated versions of JBoss Application Server that fix a security issue are\nnow available.\n\nThis update has been rated as having low security impact by the Red Hat\nSecurity Response Team.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "The JBoss Application Server is a powerful J2EE application server.\n\nA flaw was found in the JMX Console fine-grained Access Control feature.\nAn administrator with \u0027Read Mode\u0027 privileges to the JMX service could\ngain additional privileges if another administrator who had \u0027Write Mode\u0027\nprivileges was logged into and accessed the console at the same time.\n(CVE-2007-1354)\n\nNote: Fine-grained Access Control was first added to JBoss Application\nServer in June 2006; earlier versions are not affected by this issue.\n\nKnown vulnerable versions include: JBoss AS 4.0.2.GA_CP02, 4.0.2.GA_CP03,\n4.0.2.GA_CP04, 4.0.5.GA, 4.0.5_CP01, and 4.0.5_CP02.\n\nThis vulnerability is rectified and does not affect JBoss AS releases\n5.0.0.Beta2, 4.2.0.GA, 4.0.5.SP1, 3.2.8.SP2, and cumulative patches\n4.0.5.GA_CP03, 4.0.2.GA_CP05, 4.0.4.GA_CP06, 4.0.3.SP1_CP05, and\n3.2.8.SP1_CP01.\n\nUsers with an affected installation of JBoss Application Server who rely on\ngranting read-only privileges to the console should upgrade to one of these\nupdated versions.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2007:0151",
        "url": "https://access.redhat.com/errata/RHSA-2007:0151"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#low",
        "url": "https://access.redhat.com/security/updates/classification/#low"
      },
      {
        "category": "external",
        "summary": "http://jira.jboss.com/jira/browse/ASPATCH-172",
        "url": "http://jira.jboss.com/jira/browse/ASPATCH-172"
      },
      {
        "category": "external",
        "summary": "http://jira.jboss.com/jira/browse/ASPATCH-175",
        "url": "http://jira.jboss.com/jira/browse/ASPATCH-175"
      },
      {
        "category": "external",
        "summary": "http://wiki.jboss.org/wiki/Wiki.jsp?page=AccessControlForJMXConsole",
        "url": "http://wiki.jboss.org/wiki/Wiki.jsp?page=AccessControlForJMXConsole"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2007/rhsa-2007_0151.json"
      }
    ],
    "title": "Red Hat Security Advisory: JBoss Application Server security update",
    "tracking": {
      "current_release_date": "2025-10-09T12:57:42+00:00",
      "generator": {
        "date": "2025-10-09T12:57:42+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.6.9"
        }
      },
      "id": "RHSA-2007:0151",
      "initial_release_date": "2007-04-16T14:38:00+00:00",
      "revision_history": [
        {
          "date": "2007-04-16T14:38:00+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2007-04-16T10:38:41+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2025-10-09T12:57:42+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "JBoss Application Server 4",
                "product": {
                  "name": "JBoss Application Server 4",
                  "product_id": "JBoss Application Server 4",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:jboss_application_server:4"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat JBoss Application Server"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2007-1354",
      "discovery_date": "2007-03-22T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1618298"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The Access Control functionality (JMXOpsAccessControlFilter) in JMX Console in JBoss Application Server 4.0.2 and 4.0.5 before 20070416 uses a member variable to store the roles of the current user, which allows remote authenticated administrators to trigger a race condition and gain privileges by logging in during a session by a more privileged administrator, as demonstrated by privilege escalation from Read Mode to Write Mode.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "security flaw",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "JBoss Application Server 4"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2007-1354"
        },
        {
          "category": "external",
          "summary": "RHBZ#1618298",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618298"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2007-1354",
          "url": "https://www.cve.org/CVERecord?id=CVE-2007-1354"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2007-1354",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-1354"
        }
      ],
      "release_date": "2007-04-15T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2007-04-16T14:38:00+00:00",
          "details": "Updates are available from the JBoss Customer Support Portal (CSP)\nat https://network.jboss.com/",
          "product_ids": [
            "JBoss Application Server 4"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2007:0151"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "security flaw"
    }
  ]
}

rhsa-2007_0151

Vulnerability from csaf_redhat

Published

2007-04-16 14:38

Modified

2024-11-22 00:58

Summary

Red Hat Security Advisory: JBoss Application Server security update

Notes

Topic

Updated versions of JBoss Application Server that fix a security issue are now available. This update has been rated as having low security impact by the Red Hat Security Response Team.

Details

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Low"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Updated versions of JBoss Application Server that fix a security issue are\nnow available.\n\nThis update has been rated as having low security impact by the Red Hat\nSecurity Response Team.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "The JBoss Application Server is a powerful J2EE application server.\n\nA flaw was found in the JMX Console fine-grained Access Control feature.\nAn administrator with \u0027Read Mode\u0027 privileges to the JMX service could\ngain additional privileges if another administrator who had \u0027Write Mode\u0027\nprivileges was logged into and accessed the console at the same time.\n(CVE-2007-1354)\n\nNote: Fine-grained Access Control was first added to JBoss Application\nServer in June 2006; earlier versions are not affected by this issue.\n\nKnown vulnerable versions include: JBoss AS 4.0.2.GA_CP02, 4.0.2.GA_CP03,\n4.0.2.GA_CP04, 4.0.5.GA, 4.0.5_CP01, and 4.0.5_CP02.\n\nThis vulnerability is rectified and does not affect JBoss AS releases\n5.0.0.Beta2, 4.2.0.GA, 4.0.5.SP1, 3.2.8.SP2, and cumulative patches\n4.0.5.GA_CP03, 4.0.2.GA_CP05, 4.0.4.GA_CP06, 4.0.3.SP1_CP05, and\n3.2.8.SP1_CP01.\n\nUsers with an affected installation of JBoss Application Server who rely on\ngranting read-only privileges to the console should upgrade to one of these\nupdated versions.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2007:0151",
        "url": "https://access.redhat.com/errata/RHSA-2007:0151"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#low",
        "url": "https://access.redhat.com/security/updates/classification/#low"
      },
      {
        "category": "external",
        "summary": "http://jira.jboss.com/jira/browse/ASPATCH-172",
        "url": "http://jira.jboss.com/jira/browse/ASPATCH-172"
      },
      {
        "category": "external",
        "summary": "http://jira.jboss.com/jira/browse/ASPATCH-175",
        "url": "http://jira.jboss.com/jira/browse/ASPATCH-175"
      },
      {
        "category": "external",
        "summary": "http://wiki.jboss.org/wiki/Wiki.jsp?page=AccessControlForJMXConsole",
        "url": "http://wiki.jboss.org/wiki/Wiki.jsp?page=AccessControlForJMXConsole"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2007/rhsa-2007_0151.json"
      }
    ],
    "title": "Red Hat Security Advisory: JBoss Application Server security update",
    "tracking": {
      "current_release_date": "2024-11-22T00:58:36+00:00",
      "generator": {
        "date": "2024-11-22T00:58:36+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.2.1"
        }
      },
      "id": "RHSA-2007:0151",
      "initial_release_date": "2007-04-16T14:38:00+00:00",
      "revision_history": [
        {
          "date": "2007-04-16T14:38:00+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2007-04-16T10:38:41+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2024-11-22T00:58:36+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "JBoss Application Server 4",
                "product": {
                  "name": "JBoss Application Server 4",
                  "product_id": "JBoss Application Server 4",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:jboss_application_server:4"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat JBoss Application Server"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2007-1354",
      "discovery_date": "2007-03-22T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1618298"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The Access Control functionality (JMXOpsAccessControlFilter) in JMX Console in JBoss Application Server 4.0.2 and 4.0.5 before 20070416 uses a member variable to store the roles of the current user, which allows remote authenticated administrators to trigger a race condition and gain privileges by logging in during a session by a more privileged administrator, as demonstrated by privilege escalation from Read Mode to Write Mode.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "security flaw",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "JBoss Application Server 4"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2007-1354"
        },
        {
          "category": "external",
          "summary": "RHBZ#1618298",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618298"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2007-1354",
          "url": "https://www.cve.org/CVERecord?id=CVE-2007-1354"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2007-1354",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-1354"
        }
      ],
      "release_date": "2007-04-15T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2007-04-16T14:38:00+00:00",
          "details": "Updates are available from the JBoss Customer Support Portal (CSP)\nat https://network.jboss.com/",
          "product_ids": [
            "JBoss Application Server 4"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2007:0151"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "security flaw"
    }
  ]
}

gsd-2007-1354

Vulnerability from gsd

Modified

2023-12-13 01:21

Details

Aliases

CVE-2007-1354

Aliases

CVE-2007-1354

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2007-1354",
    "description": "The Access Control functionality (JMXOpsAccessControlFilter) in JMX Console in JBoss Application Server 4.0.2 and 4.0.5 before 20070416 uses a member variable to store the roles of the current user, which allows remote authenticated administrators to trigger a race condition and gain privileges by logging in during a session by a more privileged administrator, as demonstrated by privilege escalation from Read Mode to Write Mode.",
    "id": "GSD-2007-1354",
    "references": [
      "https://access.redhat.com/errata/RHSA-2007:0151"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2007-1354"
      ],
      "details": "The Access Control functionality (JMXOpsAccessControlFilter) in JMX Console in JBoss Application Server 4.0.2 and 4.0.5 before 20070416 uses a member variable to store the roles of the current user, which allows remote authenticated administrators to trigger a race condition and gain privileges by logging in during a session by a more privileged administrator, as demonstrated by privilege escalation from Read Mode to Write Mode.",
      "id": "GSD-2007-1354",
      "modified": "2023-12-13T01:21:39.336959Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "secalert@redhat.com",
        "ID": "CVE-2007-1354",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "=",
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "The Access Control functionality (JMXOpsAccessControlFilter) in JMX Console in JBoss Application Server 4.0.2 and 4.0.5 before 20070416 uses a member variable to store the roles of the current user, which allows remote authenticated administrators to trigger a race condition and gain privileges by logging in during a session by a more privileged administrator, as demonstrated by privilege escalation from Read Mode to Write Mode."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "http://jira.jboss.com/jira/browse/ASPATCH-172",
            "refsource": "MISC",
            "url": "http://jira.jboss.com/jira/browse/ASPATCH-172"
          },
          {
            "name": "http://jira.jboss.com/jira/browse/ASPATCH-175",
            "refsource": "MISC",
            "url": "http://jira.jboss.com/jira/browse/ASPATCH-175"
          },
          {
            "name": "http://osvdb.org/46765",
            "refsource": "MISC",
            "url": "http://osvdb.org/46765"
          },
          {
            "name": "http://rhn.redhat.com/errata/RHSA-2007-0151.html",
            "refsource": "MISC",
            "url": "http://rhn.redhat.com/errata/RHSA-2007-0151.html"
          },
          {
            "name": "http://www.redhat.com/archives/jboss-watch-list/2007-April/msg00000.html",
            "refsource": "MISC",
            "url": "http://www.redhat.com/archives/jboss-watch-list/2007-April/msg00000.html"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:jboss:jboss_application_server:4.0.2.ga_cp02:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:jboss:jboss_application_server:4.0.2.ga_cp03:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:jboss:jboss_application_server:4.0.2.ga_cp04:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:jboss:jboss_application_server:4.0.5.ga:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:jboss:jboss_application_server:4.0.5_cp01:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:jboss:jboss_application_server:4.0.5_cp02:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "secalert@redhat.com",
          "ID": "CVE-2007-1354"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "The Access Control functionality (JMXOpsAccessControlFilter) in JMX Console in JBoss Application Server 4.0.2 and 4.0.5 before 20070416 uses a member variable to store the roles of the current user, which allows remote authenticated administrators to trigger a race condition and gain privileges by logging in during a session by a more privileged administrator, as demonstrated by privilege escalation from Read Mode to Write Mode."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "NVD-CWE-Other"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "[jboss-watch-list] 20070416 [RHSA-2007:0151-01] Low: JBoss Application Server security update",
              "refsource": "MLIST",
              "tags": [
                "Patch"
              ],
              "url": "http://www.redhat.com/archives/jboss-watch-list/2007-April/msg00000.html"
            },
            {
              "name": "http://jira.jboss.com/jira/browse/ASPATCH-172",
              "refsource": "CONFIRM",
              "tags": [
                "Patch"
              ],
              "url": "http://jira.jboss.com/jira/browse/ASPATCH-172"
            },
            {
              "name": "http://jira.jboss.com/jira/browse/ASPATCH-175",
              "refsource": "CONFIRM",
              "tags": [
                "Patch"
              ],
              "url": "http://jira.jboss.com/jira/browse/ASPATCH-175"
            },
            {
              "name": "RHSA-2007:0151",
              "refsource": "REDHAT",
              "tags": [
                "Patch"
              ],
              "url": "http://rhn.redhat.com/errata/RHSA-2007-0151.html"
            },
            {
              "name": "46765",
              "refsource": "OSVDB",
              "tags": [],
              "url": "http://osvdb.org/46765"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "SINGLE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.0,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:S/C:P/I:P/A:P",
            "version": "2.0"
          },
          "exploitabilityScore": 6.8,
          "impactScore": 6.4,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": true,
          "severity": "MEDIUM",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2008-11-13T06:34Z",
      "publishedDate": "2007-07-27T21:30Z"
    }
  }
}

fkie_cve-2007-1354

Vulnerability from fkie_nvd

Published

2007-07-27 21:30

Modified

2025-04-09 00:30

Severity ?

Summary

References

URL	Tags
secalert@redhat.com	http://jira.jboss.com/jira/browse/ASPATCH-172	Patch
secalert@redhat.com	http://jira.jboss.com/jira/browse/ASPATCH-175	Patch
secalert@redhat.com	http://osvdb.org/46765
secalert@redhat.com	http://rhn.redhat.com/errata/RHSA-2007-0151.html	Patch
secalert@redhat.com	http://www.redhat.com/archives/jboss-watch-list/2007-April/msg00000.html	Patch
af854a3a-2127-422b-91ae-364da2661108	http://jira.jboss.com/jira/browse/ASPATCH-172	Patch
af854a3a-2127-422b-91ae-364da2661108	http://jira.jboss.com/jira/browse/ASPATCH-175	Patch
af854a3a-2127-422b-91ae-364da2661108	http://osvdb.org/46765
af854a3a-2127-422b-91ae-364da2661108	http://rhn.redhat.com/errata/RHSA-2007-0151.html	Patch
af854a3a-2127-422b-91ae-364da2661108	http://www.redhat.com/archives/jboss-watch-list/2007-April/msg00000.html	Patch

Impacted products

Vendor	Product	Version
jboss	jboss_application_server	4.0.2.ga_cp02
jboss	jboss_application_server	4.0.2.ga_cp03
jboss	jboss_application_server	4.0.2.ga_cp04
jboss	jboss_application_server	4.0.5.ga
jboss	jboss_application_server	4.0.5_cp01
jboss	jboss_application_server	4.0.5_cp02

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:jboss:jboss_application_server:4.0.2.ga_cp02:*:*:*:*:*:*:*",
              "matchCriteriaId": "C7035F76-F6FF-477D-91F4-1663F2008699",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:jboss:jboss_application_server:4.0.2.ga_cp03:*:*:*:*:*:*:*",
              "matchCriteriaId": "4D882D74-F526-404D-9BB3-88DC3D355FBD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:jboss:jboss_application_server:4.0.2.ga_cp04:*:*:*:*:*:*:*",
              "matchCriteriaId": "7EAE9B8C-A1BE-42C8-9682-216D27AF7146",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:jboss:jboss_application_server:4.0.5.ga:*:*:*:*:*:*:*",
              "matchCriteriaId": "2559DFD5-A230-467E-A720-7AE7FA9309CD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:jboss:jboss_application_server:4.0.5_cp01:*:*:*:*:*:*:*",
              "matchCriteriaId": "DABC5FBF-A500-4A80-885B-FBEACFB7393E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:jboss:jboss_application_server:4.0.5_cp02:*:*:*:*:*:*:*",
              "matchCriteriaId": "B3F772B0-5BC2-4AE4-AEA7-F22375039025",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "The Access Control functionality (JMXOpsAccessControlFilter) in JMX Console in JBoss Application Server 4.0.2 and 4.0.5 before 20070416 uses a member variable to store the roles of the current user, which allows remote authenticated administrators to trigger a race condition and gain privileges by logging in during a session by a more privileged administrator, as demonstrated by privilege escalation from Read Mode to Write Mode."
    },
    {
      "lang": "es",
      "value": "La funcionalidad Control de Acceso (JMXOpsAccessControlFilter) en JMX Console de JBoss Application Server 4.0.2 y 4.0.5 versiones anteriores a 20070416 utiliza una variable miembro para almacenar los roles del usuario actual, lo cual permite a administradores remotos autenticados disparar una condici\u00f3n de carrera y obtener privilegios al identificarse en una sesi\u00f3n, por los de otro administrador con m\u00e1s privilegios, como se demuestra con un escalado de privilegios de Modo Lectura a Modo Escritura."
    }
  ],
  "id": "CVE-2007-1354",
  "lastModified": "2025-04-09T00:30:58.490",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "SINGLE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 6.0,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:M/Au:S/C:P/I:P/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 6.8,
        "impactScore": 6.4,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": true,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2007-07-27T21:30:00.000",
  "references": [
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Patch"
      ],
      "url": "http://jira.jboss.com/jira/browse/ASPATCH-172"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Patch"
      ],
      "url": "http://jira.jboss.com/jira/browse/ASPATCH-175"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://osvdb.org/46765"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Patch"
      ],
      "url": "http://rhn.redhat.com/errata/RHSA-2007-0151.html"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Patch"
      ],
      "url": "http://www.redhat.com/archives/jboss-watch-list/2007-April/msg00000.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "http://jira.jboss.com/jira/browse/ASPATCH-172"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "http://jira.jboss.com/jira/browse/ASPATCH-175"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://osvdb.org/46765"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "http://rhn.redhat.com/errata/RHSA-2007-0151.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "http://www.redhat.com/archives/jboss-watch-list/2007-April/msg00000.html"
    }
  ],
  "sourceIdentifier": "secalert@redhat.com",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-Other"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

ghsa-rgjj-xgcc-3j8h

Vulnerability from github

Published

2022-05-01 17:52

Modified

2022-05-01 17:52

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2007-1354"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2007-07-27T21:30:00Z",
    "severity": "MODERATE"
  },
  "details": "The Access Control functionality (JMXOpsAccessControlFilter) in JMX Console in JBoss Application Server 4.0.2 and 4.0.5 before 20070416 uses a member variable to store the roles of the current user, which allows remote authenticated administrators to trigger a race condition and gain privileges by logging in during a session by a more privileged administrator, as demonstrated by privilege escalation from Read Mode to Write Mode.",
  "id": "GHSA-rgjj-xgcc-3j8h",
  "modified": "2022-05-01T17:52:51Z",
  "published": "2022-05-01T17:52:51Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-1354"
    },
    {
      "type": "WEB",
      "url": "http://jira.jboss.com/jira/browse/ASPATCH-172"
    },
    {
      "type": "WEB",
      "url": "http://jira.jboss.com/jira/browse/ASPATCH-175"
    },
    {
      "type": "WEB",
      "url": "http://osvdb.org/46765"
    },
    {
      "type": "WEB",
      "url": "http://rhn.redhat.com/errata/RHSA-2007-0151.html"
    },
    {
      "type": "WEB",
      "url": "http://www.redhat.com/archives/jboss-watch-list/2007-April/msg00000.html"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

CVE-2007-1354 (GCVE-0-2007-1354)

Vulnerability from cvelistv5

RHSA-2007:0151

Vulnerability from csaf_redhat

rhsa-2007:0151

Vulnerability from csaf_redhat

rhsa-2007_0151

Vulnerability from csaf_redhat

gsd-2007-1354

Vulnerability from gsd

fkie_cve-2007-1354

Vulnerability from fkie_nvd

ghsa-rgjj-xgcc-3j8h

Vulnerability from github

Tags

Sightings

Nomenclature