VYPR
Critical severity9.8NVD Advisory· Published Sep 29, 2016· Updated Jun 17, 2026

CVE-2016-5062

CVE-2016-5062

Description

The web server in Aternity before 9.0.1 does not require authentication for getMBeansFromURL loading of Java MBeans, which allows remote attackers to execute arbitrary Java code by registering MBeans.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Aternity/Aternity2 versions
    cpe:2.3:a:aternity:aternity:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:aternity:aternity:*:*:*:*:*:*:*:*range: <=9.0
    • (no CPE)range: <9.0.1

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.