Unrated severityNVD Advisory· Published Jan 27, 2012· Updated Jun 16, 2026
CVE-2011-4608
CVE-2011-4608
Description
mod_cluster in JBoss Enterprise Application Platform 5.1.2 for Red Hat Linux allows worker nodes to register with arbitrary virtual hosts, which allows remote attackers to bypass intended access restrictions and provide malicious content, hijack sessions, and steal credentials by registering from an external vhost that does not enforce security constraints.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:redhat:jboss_enterprise_application_platform:5.1.2:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:redhat:jboss_enterprise_application_platform:5.1.2:*:*:*:*:*:*:*
- (no CPE)range: <=5.1.2
Patches
Vulnerability mechanics
References
10- www.redhat.com/support/errata/RHSA-2012-0035.htmlnvdVendor Advisory
- www.redhat.com/support/errata/RHSA-2012-0036.htmlnvdVendor Advisory
- www.redhat.com/support/errata/RHSA-2012-0037.htmlnvdVendor Advisory
- www.redhat.com/support/errata/RHSA-2012-0038.htmlnvdVendor Advisory
- www.redhat.com/support/errata/RHSA-2012-0039.htmlnvdVendor Advisory
- www.redhat.com/support/errata/RHSA-2012-0040.htmlnvdVendor Advisory
- www.securityfocus.com/bid/51554nvd
- www.securitytracker.com/idnvd
- bugzilla.redhat.com/show_bug.cginvd
- exchange.xforce.ibmcloud.com/vulnerabilities/72460nvd
News mentions
0No linked articles in our index yet.