← Zuruck zu CVEs
CVE-2014-0058
N/ABeschreibung
The security audit functionality in Red Hat JBoss Enterprise Application Platform (EAP) 6.x before 6.2.1 logs request parameters in plaintext, which might allow local users to obtain passwords by reading the log files.
CVE Details
CVSS v3.1 BewertungN/A
Veroffentlicht2/26/2014
Zuletzt geandert4/12/2025
Quellenvd
Honeypot-Sichtungen0
Betroffene Produkte
redhat:jboss_enterprise_application_platform
Schwachen (CWE)
CWE-310
Referenzen
http://rhn.redhat.com/errata/RHSA-2014-0204.html(secalert@redhat.com)
http://rhn.redhat.com/errata/RHSA-2014-0205.html(secalert@redhat.com)
http://rhn.redhat.com/errata/RHSA-2015-0034.html(secalert@redhat.com)
http://www.securityfocus.com/bid/65762(secalert@redhat.com)
http://rhn.redhat.com/errata/RHSA-2014-0204.html(af854a3a-2127-422b-91ae-364da2661108)
http://rhn.redhat.com/errata/RHSA-2014-0205.html(af854a3a-2127-422b-91ae-364da2661108)
http://rhn.redhat.com/errata/RHSA-2015-0034.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/65762(af854a3a-2127-422b-91ae-364da2661108)
IOC Korrelationen
Keine Korrelationen erfasst
This product uses data from the NVD API but is not endorsed or certified by the NVD.