Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
redhat jboss operations network 2.3.1 vulnerabilities and exploits
(subscribe to this query)
463
VMScore
CVE-2010-0737
A missing permission check was found in The CLI in JBoss Operations Network prior to 2.3.1 does not properly check permissions, which allows JBoss ON users to perform management tasks and configuration changes with the privileges of the administrator user.
Redhat Jboss Operations Network
312
VMScore
CVE-2011-4573
Red Hat JBoss Operations Network (JON) prior to 2.4.2 does not properly enforce "modify resource" permissions for remote authenticated users when deleting a plug-in configuration update from the group connection properties history, which prevents such activities from be...
Redhat Jboss Operations Network
Redhat Jboss Operations Network 2.3.1
Redhat Jboss Operations Network 2.4
Redhat Jboss Operations Network 2.3
Redhat Jboss Operations Network 2.2
Redhat Jboss Operations Network 2.1.0
Redhat Jboss Operations Network 2.0.1
Redhat Jboss Operations Network 2.0.0
Redhat Jboss Operations Network 1.0.0
516
VMScore
CVE-2012-0052
Red Hat JBoss Operations Network (JON) prior to 2.4.2 and 3.0.x prior to 3.0.1 does not check the JON agent key, which allows remote malicious users to spoof the identity of arbitrary agents via the registered agent name.
Redhat Jboss Operations Network
Redhat Jboss Operations Network 2.4
Redhat Jboss Operations Network 2.3.1
Redhat Jboss Operations Network 2.3
Redhat Jboss Operations Network 2.2
Redhat Jboss Operations Network 2.1.0
Redhat Jboss Operations Network 2.0.0
Redhat Jboss Operations Network 3.0
Redhat Jboss Operations Network 2.0.1
516
VMScore
CVE-2012-1100
Red Hat JBoss Operations Network (JON) 3.0.x prior to 3.0.1, 2.4.2, and previous versions, when LDAP authentication is enabled and the LDAP bind account credentials are invalid, allows remote malicious users to login to LDAP-based accounts via an arbitrary password in a login req...
Redhat Jboss Operations Network 3.0
Redhat Jboss Operations Network
Redhat Jboss Operations Network 2.0.1
Redhat Jboss Operations Network 2.0.0
Redhat Jboss Operations Network 2.4
Redhat Jboss Operations Network 2.3
Redhat Jboss Operations Network 2.1.0
Redhat Jboss Operations Network 2.3.1
Redhat Jboss Operations Network 2.2
516
VMScore
CVE-2012-0062
Red Hat JBoss Operations Network (JON) prior to 2.4.2 and 3.0.x prior to 3.0.1 allows remote malicious users to hijack agent sessions via an agent registration request without a security token.
Redhat Jboss Operations Network 2.0.0
Redhat Jboss Operations Network 3.0
Redhat Jboss Operations Network
Redhat Jboss Operations Network 2.4
Redhat Jboss Operations Network 2.3.1
Redhat Jboss Operations Network 2.2
Redhat Jboss Operations Network 2.0.1
Redhat Jboss Operations Network 2.3
Redhat Jboss Operations Network 2.1.0
383
VMScore
CVE-2011-3206
Multiple cross-site scripting (XSS) vulnerabilities in the administration interface in RHQ 4.2.0, as used in JBoss Operations Network (aka JON or JBoss ON) prior to 3.0, allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Redhat Jboss Operations Network 2.1.0
Redhat Jboss Operations Network 2.0.0
Rhq-project Rhq 4.2.0
Redhat Jboss Operations Network 2.0.1
Redhat Jboss Operations Network
Redhat Jboss Operations Network 2.3
Redhat Jboss Operations Network 2.2
Redhat Jboss Operations Network 2.4
Redhat Jboss Operations Network 2.3.1
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started