Unrated severityNVD Advisory· Published Feb 14, 2014· Updated Jun 17, 2026
CVE-2014-0018
CVE-2014-0018
Description
Red Hat JBoss Enterprise Application Platform (JBEAP) 6.2.0 and JBoss WildFly Application Server, when run under a security manager, do not properly restrict access to the Modular Service Container (MSC) service registry, which allows local users to modify the server via a crafted deployment.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4cpe:2.3:a:redhat:jboss_enterprise_application_platform:6.2.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:redhat:jboss_enterprise_application_platform:6.2.0:*:*:*:*:*:*:*
- (no CPE)range: =6.2.0
cpe:2.3:a:redhat:jboss_wildfly_application_server:-:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:redhat:jboss_wildfly_application_server:-:*:*:*:*:*:*:*
- (no CPE)
Patches
Vulnerability mechanics
References
5- rhn.redhat.com/errata/RHSA-2014-0170.htmlnvdVendor Advisory
- rhn.redhat.com/errata/RHSA-2014-0171.htmlnvdVendor Advisory
- rhn.redhat.com/errata/RHSA-2014-0172.htmlnvdVendor Advisory
- www.securityfocus.com/bid/65591nvd
- bugzilla.redhat.com/show_bug.cginvd
News mentions
0No linked articles in our index yet.