Unrated severityNVD Advisory· Published Apr 24, 2015· Updated Jun 17, 2026
CVE-2015-0297
CVE-2015-0297
Description
Red Hat JBoss Operations Network 3.3.1 does not properly restrict access to certain APIs, which allows remote attackers to execute arbitrary Java methods via the (1) ServerInvokerServlet or (2) SchedulerService or (3) cause a denial of service (disk consumption) via the ContentManager.
Affected products
2cpe:2.3:a:redhat:jboss_operations_network:3.3.1:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:redhat:jboss_operations_network:3.3.1:*:*:*:*:*:*:*
- (no CPE)range: = 3.3.1
Patches
Vulnerability mechanics
References
2- rhn.redhat.com/errata/RHSA-2015-0862.htmlnvdVendor Advisory
- www.securitytracker.com/id/1032181nvd
News mentions
0No linked articles in our index yet.