VYPR
Unrated severityNVD Advisory· Published Feb 5, 2013· Updated Jun 16, 2026

CVE-2012-3369

CVE-2012-3369

Description

The CallerIdentityLoginModule in JBoss Enterprise Application Platform (EAP) before 5.2.0, Web Platform (EWP) before 5.2.0, BRMS Platform before 5.3.1, and SOA Platform before 5.3.1 allows remote attackers to gain privileges of the previous user via a null password, which causes the previous user's password to be used.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4

Patches

Vulnerability mechanics

References

16

News mentions

0

No linked articles in our index yet.