← voltar
CVE-2017-2595

CVE-2017-2595

CVSS 7.7 HIGHEPSS 3.1%CWE-22
It was found that the log file viewer in Red Hat JBoss Enterprise Application 6 and 7 allows arbitrary file read to authenticated user via path traversal.
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
Produtos afetados
[UNKNOWN] · wildfly

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://rhn.redhat.com/errata/RHSA-2017-1409.htmlhttp://rhn.redhat.com/errata/RHSA-2017-1551.htmlhttps://access.redhat.com/errata/RHSA-2017:1410https://access.redhat.com/errata/RHSA-2017:1411https://access.redhat.com/errata/RHSA-2017:1412https://access.redhat.com/errata/RHSA-2017:1548https://access.redhat.com/errata/RHSA-2017:1549https://access.redhat.com/errata/RHSA-2017:1550https://access.redhat.com/errata/RHSA-2017:1552https://access.redhat.com/errata/RHSA-2017:3454https://access.redhat.com/errata/RHSA-2017:3455https://access.redhat.com/errata/RHSA-2017:3456