Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:11855
HistoryJan 15, 2019 - 9:08 a.m.

Denial Of Service (DoS)

2019-01-1509:08:49
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
4

0.007 Low

EPSS

Percentile

80.6%

JSON

jboss eap is vulnerable to denial of service. It was found that JBoss EAP did not properly authorize a user performing a shut down. A remote user with the Monitor, Deployer, or Auditor role could use this flaw to shut down the EAP server, which is an action restricted to admin users.

References

Related

openvas 1
nvd 1
cve 1
prion 1
cvelist 1
nessus 5
redhat 4
openvas
openvas
Red Hat JBoss Enterprise Application Platform (EAP) < 6.4.5 DoS Vulnerability
2016-12-16 00:00:00
nvd
nvd
CVE-2015-5304
2015-12-16 21:59:00
cve
cve
CVE-2015-5304
2015-12-16 21:59:00
prion
prion
Design/Logic Flaw
2015-12-16 21:59:00
cvelist
cvelist
CVE-2015-5304
2015-12-16 21:00:00
nessus
nessus
RHEL 6 : Red Hat JBoss Enterprise Application Platform 6.4.5 update (Critical) (RHSA-2015:2539)
2015-12-04 00:00:00
RHEL 6 : JBoss EAP (RHSA-2015:2542)
2015-12-04 00:00:00
RHEL 7 : JBoss EAP (RHSA-2015:2540)
2016-01-11 00:00:00
redhat
redhat
(RHSA-2015:2539) Critical: Red Hat JBoss Enterprise Application Platform 6.4.5 update
2015-12-02 00:00:00
(RHSA-2015:2542) Critical: Red Hat JBoss Enterprise Application Platform 6.4.5 jboss-ec2-eap update
2015-12-02 00:00:00
(RHSA-2015:2540) Critical: Red Hat JBoss Enterprise Application Platform 6.4.5 update
2015-12-02 16:52:11

0.007 Low

EPSS

Percentile

80.6%

JSON
Related for VERACODE:11855
openvas1nvd1cve1prion1cvelist1nessus5redhat4