High severity8.8NVD Advisory· Published Sep 26, 2016· Updated Jun 17, 2026
CVE-2016-5406
CVE-2016-5406
Description
The domain controller in Red Hat JBoss Enterprise Application Platform (EAP) 7.x before 7.0.2 allows remote authenticated users to gain privileges by leveraging failure to propagate administrative RBAC configuration to all slaves.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3cpe:2.3:a:redhat:jboss_enterprise_application_platform:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:redhat:jboss_enterprise_application_platform:*:*:*:*:*:*:*:*range: <=7.0.1
- (no CPE)range: <7.0.2
Patches
Vulnerability mechanics
References
9- rhn.redhat.com/errata/RHSA-2016-1838.htmlnvdVendor Advisory
- rhn.redhat.com/errata/RHSA-2016-1839.htmlnvdVendor Advisory
- rhn.redhat.com/errata/RHSA-2016-1840.htmlnvdVendor Advisory
- rhn.redhat.com/errata/RHSA-2016-1841.htmlnvdVendor Advisory
- bugzilla.redhat.com/show_bug.cginvdIssue TrackingVDB EntryVendor Advisory
- access.redhat.com/errata/RHSA-2017:3454nvd
- access.redhat.com/errata/RHSA-2017:3455nvd
- access.redhat.com/errata/RHSA-2017:3456nvd
- access.redhat.com/errata/RHSA-2017:3458nvd
News mentions
0No linked articles in our index yet.