Unrated severityNVD Advisory· Published Jan 23, 2020· Updated Aug 6, 2024

CVE-2012-5626

Description

EJB method in Red Hat JBoss BRMS 5; Red Hat JBoss Enterprise Application Platform 5; Red Hat JBoss Operations Network 3.1; Red Hat JBoss Portal 4 and 5; Red Hat JBoss SOA Platform 4.2, 4.3, and 5; in Red Hat JBoss Enterprise Web Server 1 ignores roles specified using the @RunAs annotation.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

Red Hat/Jboss Enterprise Soa Platformllm-create2 versions
<=5+ 1 more
- (no CPE)range: <=5
- (no CPE)range: 4.2
Red Hat/Jboss Enterprise Application Platformllm-fuzzy2 versions
=5+ 1 more
- (no CPE)range: =5
- (no CPE)range: 5
Red Hat/Jboss Operations Networkllm-fuzzy2 versions
=3.1+ 1 more
- (no CPE)range: =3.1
- (no CPE)range: 3.1
Red Hat/Jboss Enterprise Web Serverllm-fuzzy2 versions
=1+ 1 more
- (no CPE)range: =1
- (no CPE)range: 1
Red Hat/Jboss Portalllm-fuzzy2 versions
=4,5+ 1 more
- (no CPE)range: =4,5
- (no CPE)range: 4
Red Hat/JBoss BRMSllm-fuzzy2 versions
=5+ 1 more
- (no CPE)range: =5
- (no CPE)range: 5

Patches

Vulnerability mechanics

References

access.redhat.com/security/cve/cve-2012-5626mitrex_refsource_CONFIRM
bugzilla.redhat.com/show_bug.cgimitrex_refsource_CONFIRM

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000