Cross-site request forgery (CSRF) vulnerability in the JMX Console (jmx-console) in JBoss Enterprise Portal Platform prior to 5.2.2, BRMS Platform 5.3.0 before roll up patch1, and SOA Platform 5.3.0 allows remote authenticated users to hijack the authentication of arbitrary users for requests that perform operations on MBeans and possibly execute arbitrary code via unspecified vectors.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
redhat jboss enterprise portal platform 5.0.0 |
||
redhat jboss enterprise portal platform 5.1.1 |
||
redhat jboss enterprise portal platform 5.1.0 |
||
redhat jboss enterprise portal platform |
||
redhat jboss enterprise brms platform 5.3.0 |
||
redhat jboss enterprise portal platform 5.2.0 |
||
redhat jboss enterprise soa platform 5.3.0 |
||
redhat jboss enterprise portal platform 5.0.1 |