Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jboss operations network vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2015-3267
Cross-site scripting (XSS) vulnerability in the 404 error page in Red Hat JBoss Operations Network prior to 3.3.3 allows remote malicious users to inject arbitrary web script or HTML via a crafted URL.
Redhat Jboss Operations Network
4.3
CVSSv2
CVE-2012-5920
Cross-site scripting (XSS) vulnerability in Google Web Toolkit (GWT) 2.4 up to and including 2.5 Final, as used in JBoss Operations Network (ON) 3.1.1 and possibly other products, allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors. NOTE: ...
Google Web Toolkit 2.4.0
Google Web Toolkit 2.4
Google Web Toolkit 2.5.0
4.3
CVSSv2
CVE-2011-3206
Multiple cross-site scripting (XSS) vulnerabilities in the administration interface in RHQ 4.2.0, as used in JBoss Operations Network (aka JON or JBoss ON) prior to 3.0, allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Redhat Jboss Operations Network 2.1.0
Redhat Jboss Operations Network 2.0.0
Rhq-project Rhq 4.2.0
Redhat Jboss Operations Network 2.0.1
Redhat Jboss Operations Network
Redhat Jboss Operations Network 2.3
Redhat Jboss Operations Network 2.2
Redhat Jboss Operations Network 2.4
Redhat Jboss Operations Network 2.3.1
4
CVSSv2
CVE-2008-5083
In JON 2.1.x prior to 2.1.2 SP1, users can obtain unauthorized security information about private resources managed by JBoss ON.
Redhat Jboss Operations Network
Redhat Jboss Operations Network 2.1.2
4
CVSSv2
CVE-2014-7853
The JBoss Application Server (WildFly) JacORB subsystem in Red Hat JBoss Enterprise Application Platform (EAP) prior to 6.3.3 does not properly assign socket-binding-ref sensitivity classification to the security-domain attribute, which allows remote authenticated users to obtain...
Redhat Jboss Operations Network 3.3.1
Redhat Jboss Enterprise Application Platform
3.7
CVSSv2
CVE-2012-0032
Red Hat JBoss Operations Network (JON) prior to 3.0.1 uses 0777 permissions for the root directory when installing a remote client, which allows local users to read or modify subdirectories and files within the root directory, as demonstrated by obtaining JON credentials.
Redhat Jboss Operations Network
3.6
CVSSv2
CVE-2013-4374
An insecurity temporary file vulnerability exists in RHQ Mongo DB Drift Server through 2013-09-25 when unpacking zipped files.
Redhat Rhq Mongo Db Drift Server
Redhat Jboss Operations Network 3.1
3.5
CVSSv2
CVE-2011-4573
Red Hat JBoss Operations Network (JON) prior to 2.4.2 does not properly enforce "modify resource" permissions for remote authenticated users when deleting a plug-in configuration update from the group connection properties history, which prevents such activities from be...
Redhat Jboss Operations Network
Redhat Jboss Operations Network 2.3.1
Redhat Jboss Operations Network 2.4
Redhat Jboss Operations Network 2.3
Redhat Jboss Operations Network 2.2
Redhat Jboss Operations Network 2.1.0
Redhat Jboss Operations Network 2.0.1
Redhat Jboss Operations Network 2.0.0
Redhat Jboss Operations Network 1.0.0
3.2
CVSSv2
CVE-2013-4373
The storeFiles method in JPADriftServerBean in Red Hat JBoss Operations Network (JON) 3.1.2 allows local users to load arbitrary drift files into a server by writing the files to the temporary directory that is used to unpack zip files.
Redhat Jboss Operations Network 3.1.2
2.1
CVSSv2
CVE-2013-4293
The server in Red Hat JBoss Operations Network (JON) 3.1.2 logs passwords in plaintext, which allows local users to obtain sensitive information by reading the log files.
Redhat Jboss Operations Network 3.1.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-24955
man-in-the-middle
dos
CVE-2024-2818
CVE-2024-30584
CVE-2024-31134
camera
CVE-2023-45866
CVE-2024-30585
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »