Unrated severityNVD Advisory· Published Dec 16, 2015· Updated Jun 17, 2026
CVE-2015-5304
CVE-2015-5304
Description
Red Hat JBoss Enterprise Application Platform (EAP) before 6.4.5 does not properly authorize access to shut down the server, which allows remote authenticated users with the Monitor, Deployer, or Auditor role to cause a denial of service via unspecified vectors.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:redhat:jboss_enterprise_application_platform:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:redhat:jboss_enterprise_application_platform:*:*:*:*:*:*:*:*range: <=6.4.4
- (no CPE)range: <6.4.5
Patches
Vulnerability mechanics
References
7- rhn.redhat.com/errata/RHSA-2015-2538.htmlnvdVendor Advisory
- rhn.redhat.com/errata/RHSA-2015-2539.htmlnvdVendor Advisory
- rhn.redhat.com/errata/RHSA-2015-2540.htmlnvdVendor Advisory
- rhn.redhat.com/errata/RHSA-2015-2541.htmlnvdVendor Advisory
- rhn.redhat.com/errata/RHSA-2015-2542.htmlnvdVendor Advisory
- bugzilla.redhat.com/show_bug.cginvdVendor Advisory
- www.securitytracker.com/id/1034280nvd
News mentions
0No linked articles in our index yet.