A flaw was found in Jolokia versions from 1.2 to prior to 1.6.1. Affected versions are vulnerable to a system-wide CSRF. This holds true for properly configured instances with strict checking for origin and referrer headers. This could result in a Remote Code Execution attack.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
jolokia jolokia |
||
redhat openstack 13 |