CVE-2011-2908

NONECVSS 0.0

0.0

Cross-site request forgery (CSRF) vulnerability in the JMX Console (jmx-console) in JBoss Enterprise Portal Platform before 5.2.2, BRMS Platform 5.3.0 before roll up patch1, and SOA Platform 5.3.0 allows remote authenticated users to hijack the authentication of arbitrary users for requests that perform operations on MBeans and possibly execute arbitrary code via unspecified vectors.

🔗 References (36)

secalert@redhathttp://rhn.redhat.com/errata/RHSA-2012-1152.html
secalert@redhathttp://rhn.redhat.com/errata/RHSA-2012-1165.html
secalert@redhathttp://rhn.redhat.com/errata/RHSA-2012-1232.html
secalert@redhathttp://rhn.redhat.com/errata/RHSA-2013-0191.html
secalert@redhathttp://rhn.redhat.com/errata/RHSA-2013-0192.html
secalert@redhathttp://rhn.redhat.com/errata/RHSA-2013-0193.html
secalert@redhathttp://rhn.redhat.com/errata/RHSA-2013-0194.html
secalert@redhathttp://rhn.redhat.com/errata/RHSA-2013-0195.html
secalert@redhathttp://rhn.redhat.com/errata/RHSA-2013-0196.html
secalert@redhathttp://rhn.redhat.com/errata/RHSA-2013-0197.html
secalert@redhathttp://rhn.redhat.com/errata/RHSA-2013-0198.html
secalert@redhathttp://secunia.com/advisories/50230
secalert@redhathttp://secunia.com/advisories/50549
secalert@redhathttp://secunia.com/advisories/51984
secalert@redhathttp://www.osvdb.org/84530

Is Your Infrastructure Affected by CVE-2011-2908?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2011-2908

📅 Published

🔄 Last Modified

🔗 References (36)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2011-2908?