| Vulnerability Name: | CVE-2010-0738 (CCN-58147) | ||||||||
| Assigned: | 2010-04-26 | ||||||||
| Published: | 2010-04-26 | ||||||||
| Updated: | 2023-02-13 | ||||||||
| Summary: | |||||||||
| CVSS v3 Severity: | 5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)
| ||||||||
| CVSS v2 Severity: | 5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N) 4.1 Medium (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N/E:F/RL:OF/RC:C)
4.1 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N/E:F/RL:OF/RC:C)
| ||||||||
| Vulnerability Consequences: | Bypass Security | ||||||||
| References: | Source: MITRE Type: CNA CVE-2010-0738 Source: CCN Type: HP Security Bulletin HPSBMU02714 SSRT100244 rev.1 HP Network Node Manager i (NNMi) for HP-UX, Linux, Solaris, and Windows, Remote Unauthorized Disclosure of Information Source: secalert@redhat.com Type: UNKNOWN secalert@redhat.com Source: secalert@redhat.com Type: UNKNOWN secalert@redhat.com Source: CCN Type: RHSA-2010-0376 Critical: JBoss Enterprise Application Platform 4.2.0.CP09 update Source: CCN Type: RHSA-2010-0377 Critical: JBoss Enterprise Application Platform 4.3.0.CP08 update Source: CCN Type: RHSA-2010-0378 Critical: JBoss Enterprise Application Platform 4.2.0.CP09 update Source: CCN Type: RHSA-2010-0379 Critical: JBoss Enterprise Application Platform 4.3.0.CP08 update Source: CCN Type: SA39563 Red Hat JBoss Enterprise Application Platform Three Security Issues Source: CCN Type: SA46627 HP Network Node Manager i JMX Console Security Bypass Security Issue Source: CCN Type: SA47850 JBoss Multiple Products JMX Console Authentication Bypass Source: CCN Type: SA52192 CA ControlMinder JMX Console Authentication Bypass Source: CCN Type: SA54255 HP Network Node Manager i (NNMi) Multiple Vulnerabilities Source: secalert@redhat.com Type: UNKNOWN secalert@redhat.com Source: CCN Type: SECTRACK ID: 1023918 JBoss Enterprise Application Platform Bugs Let Remote Users Bypass Authentication and Access Potentially Sensitive Information Source: secalert@redhat.com Type: UNKNOWN secalert@redhat.com Source: CCN Type: JBoss Web site JBoss Enterprise Application Platform Source: CCN Type: OSVDB ID: 64171 JBoss Enterprise Application Platform JMX Console HTTP Request Authentication Bypass Source: CCN Type: BID-39710 JBoss Enterprise Application Platform Multiple Vulnerabilities Source: secalert@redhat.com Type: UNKNOWN secalert@redhat.com Source: secalert@redhat.com Type: Vendor Advisory secalert@redhat.com Source: secalert@redhat.com Type: UNKNOWN secalert@redhat.com Source: secalert@redhat.com Type: UNKNOWN secalert@redhat.com Source: XF Type: UNKNOWN jboss-jmxconsole-security-bypass(58147) Source: CCN Type: HP Security Bulletin HPSBMU02894 rev.1 HP Network Node Manager I (NNMi) for HP-UX, Linux, Solaris, and Windows, Remote Denial of Service (DoS), Unauthorized Access, Execution of Arbitrary Code Source: CCN Type: RHSA-2010:0376-1 JBoss Enterprise Application Platform 4.2.0.CP09 update Source: secalert@redhat.com Type: UNKNOWN secalert@redhat.com Source: secalert@redhat.com Type: UNKNOWN secalert@redhat.com Source: secalert@redhat.com Type: UNKNOWN secalert@redhat.com Source: secalert@redhat.com Type: UNKNOWN secalert@redhat.com Source: EXPLOIT-DB Type: EXPLOIT Offensive Security Exploit Database [03-04-2011] Source: EXPLOIT-DB Type: EXPLOIT Offensive Security Exploit Database [01-10-2011] Source: EXPLOIT-DB Type: EXPLOIT Offensive Security Exploit Database [10-03-2011] Source: EXPLOIT-DB Type: EXPLOIT Offensive Security Exploit Database [10-11-2011] Source: CCN Type: Rapid7 Vulnerability and Exploit Database [05-30-2018] JBoss JMX Console Beanshell Deployer WAR Upload and Deployment Source: CCN Type: Rapid7 Vulnerability and Exploit Database [05-30-2018] SAP URL Scanner Source: CCN Type: Rapid7 Vulnerability and Exploit Database [02-20-2007] JBoss JMX Console Deployer Upload and Execute Source: CCN Type: Rapid7 Vulnerability and Exploit Database [02-20-2007] Trend Micro ServerProtect 5.58 Buffer Overflow | ||||||||
| Vulnerable Configuration: | Configuration CCN 1: Denotes that component is vulnerable | ||||||||
| BACK | |||||||||