VYPR
Get started
← All advisories
Unrated severityNVD Advisory· Published Aug 10, 2010· Updated Apr 29, 2026

CVE-2010-2474

CVE-2010-2474

Description

JBoss Enterprise Service Bus (ESB) before 4.7 CP02 in JBoss Enterprise SOA Platform before 5.0.2 does not properly consider the security domain with which a service is secured, which might allow remote attackers to gain privileges by executing a service.

Affected products

22
  • Red Hat/Jboss Enterprise Service Bus8 versions
    cpe:2.3:a:redhat:jboss_enterprise_service_bus:*:*:*:*:*:*:*:*+ 7 more
    • cpe:2.3:a:redhat:jboss_enterprise_service_bus:*:*:*:*:*:*:*:*range: <=4.7
    • cpe:2.3:a:redhat:jboss_enterprise_service_bus:4.0:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:jboss_enterprise_service_bus:4.2:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:jboss_enterprise_service_bus:4.2.1:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:jboss_enterprise_service_bus:4.3:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:jboss_enterprise_service_bus:4.4:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:jboss_enterprise_service_bus:4.5:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:jboss_enterprise_service_bus:4.6:*:*:*:*:*:*:*
  • Red Hat/Jboss Enterprise Soa Platform14 versions
    cpe:2.3:a:redhat:jboss_enterprise_soa_platform:4.2.0:*:*:*:*:*:*:*+ 13 more
    • cpe:2.3:a:redhat:jboss_enterprise_soa_platform:4.2.0:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:jboss_enterprise_soa_platform:4.2.0:cp01:*:*:*:*:*:*
    • cpe:2.3:a:redhat:jboss_enterprise_soa_platform:4.2.0:cp02:*:*:*:*:*:*
    • cpe:2.3:a:redhat:jboss_enterprise_soa_platform:4.2.0:cp03:*:*:*:*:*:*
    • cpe:2.3:a:redhat:jboss_enterprise_soa_platform:4.2.0:cp04:*:*:*:*:*:*
    • cpe:2.3:a:redhat:jboss_enterprise_soa_platform:4.2.0:cp05:*:*:*:*:*:*
    • cpe:2.3:a:redhat:jboss_enterprise_soa_platform:4.2.0:tp02:*:*:*:*:*:*
    • cpe:2.3:a:redhat:jboss_enterprise_soa_platform:4.3.0:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:jboss_enterprise_soa_platform:4.3.0:cp01:*:*:*:*:*:*
    • cpe:2.3:a:redhat:jboss_enterprise_soa_platform:4.3.0:cp02:*:*:*:*:*:*
    • cpe:2.3:a:redhat:jboss_enterprise_soa_platform:4.3.0:cp03:*:*:*:*:*:*
    • cpe:2.3:a:redhat:jboss_enterprise_soa_platform:4.3.0:cp04:*:*:*:*:*:*
    • cpe:2.3:a:redhat:jboss_enterprise_soa_platform:5.0.0:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:jboss_enterprise_soa_platform:5.0.1:*:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

5

News mentions

0

No linked articles in our index yet.