← back
CVE-2011-4573

CVE-2011-4573

EPSS 0.8%
Red Hat JBoss Operations Network (JON) before 2.4.2 does not properly enforce "modify resource" permissions for remote authenticated users when deleting a plug-in configuration update from the group connection properties history, which prevents such activities from being recorded in the audit trail.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://rhn.redhat.com/errata/RHSA-2012-0089.htmlhttps://bugzilla.redhat.com/show_bug.cgi?id=760024