VYPR

Jboss Enterprise Brms Platform

by Red Hat

CVEs (23)

  • CVE-2011-4605Nov 23, 2012
    risk 0.00cvss epss 0.04

    The (1) JNDI service, (2) HA-JNDI service, and (3) HAJNDIFactory invoker servlet in JBoss Enterprise Application Platform 4.3.0 CP10 and 5.1.2, Web Platform 5.1.2, SOA Platform 4.2.0.CP05 and 4.3.0.CP05, Portal Platform 4.3 CP07 and 5.2.x before 5.2.2, and BRMS Platform before…

  • CVE-2011-4085Nov 23, 2012
    risk 0.00cvss epss 0.03

    The servlets invoked by httpha-invoker in JBoss Enterprise Application Platform before 5.1.2, SOA Platform before 5.2.0, BRMS Platform before 5.3.0, and Portal Platform before 4.3 CP07 perform access control only for the GET and POST methods, which allow remote attackers to…

  • CVE-2011-2908Nov 23, 2012
    risk 0.00cvss epss 0.02

    Cross-site request forgery (CSRF) vulnerability in the JMX Console (jmx-console) in JBoss Enterprise Portal Platform before 5.2.2, BRMS Platform 5.3.0 before roll up patch1, and SOA Platform 5.3.0 allows remote authenticated users to hijack the authentication of arbitrary users…

Page 2 of 2