It was found that the improper default permissions on /tmp/auth directory in JBoss Enterprise Application Platform before 7.1.0 can allow any local user to connect to CLI and allow the user to execute any arbitrary operations.
CPE | Name | Operator | Version |
---|---|---|---|
jboss_enterprise_application_platform | lt | 7.1.0 |