High severity8.8NVD Advisory· Published Sep 26, 2016· Updated May 6, 2026

CVE-2016-5406

Description

The domain controller in Red Hat JBoss Enterprise Application Platform (EAP) 7.x before 7.0.2 allows remote authenticated users to gain privileges by leveraging failure to propagate administrative RBAC configuration to all slaves.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

rhn.redhat.com/errata/RHSA-2016-1838.htmlnvdVendor Advisory
rhn.redhat.com/errata/RHSA-2016-1839.htmlnvdVendor Advisory
rhn.redhat.com/errata/RHSA-2016-1840.htmlnvdVendor Advisory
rhn.redhat.com/errata/RHSA-2016-1841.htmlnvdVendor Advisory
bugzilla.redhat.com/show_bug.cginvdIssue TrackingVDB EntryVendor Advisory
access.redhat.com/errata/RHSA-2017:3454nvd
access.redhat.com/errata/RHSA-2017:3455nvd
access.redhat.com/errata/RHSA-2017:3456nvd
access.redhat.com/errata/RHSA-2017:3458nvd

News mentions

No linked articles in our index yet.

cvss	0.572
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000