VYPR
Unrated severityNVD Advisory· Published Feb 5, 2013· Updated Jun 16, 2026

CVE-2012-5478

CVE-2012-5478

Description

The AuthorizationInterceptor in JBoss Enterprise Application Platform (EAP) before 5.2.0, Web Platform (EWP) before 5.2.0, BRMS Platform before 5.3.1, and SOA Platform before 5.3.1 does not properly restrict access, which allows remote authenticated users to bypass intended role restrictions and perform arbitrary JMX operations via unspecified vectors.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4

Patches

Vulnerability mechanics

References

15

News mentions

0

No linked articles in our index yet.