TROYANOSYVIRUS
Retour aux CVEs

CVE-2018-10934

N/A

Description

A cross-site scripting (XSS) vulnerability was found in the JBoss Management Console versions before 7.1.6.CR1, 7.1.6.GA. Users with roles that can create objects in the application can exploit this to attack other privileged users.

Details CVE

Score CVSS v3.1N/A
Publie3/27/2019
Derniere modification11/21/2024
Sourcenvd
Observations honeypot0

Produits affectes

redhat:enterprise_linux_serverredhat:jboss_enterprise_application_platformredhat:single_sign-on

Faiblesses (CWE)

CWE-79CWE-79

References

https://access.redhat.com/errata/RHSA-2019:1159(secalert@redhat.com)
https://access.redhat.com/errata/RHSA-2019:1160(secalert@redhat.com)
https://access.redhat.com/errata/RHSA-2019:1161(secalert@redhat.com)
https://access.redhat.com/errata/RHSA-2019:1162(secalert@redhat.com)
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10934(secalert@redhat.com)
https://security.netapp.com/advisory/ntap-20190611-0002/(secalert@redhat.com)
https://access.redhat.com/errata/RHSA-2019:1159(af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2019:1160(af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2019:1161(af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2019:1162(af854a3a-2127-422b-91ae-364da2661108)
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10934(af854a3a-2127-422b-91ae-364da2661108)
https://security.netapp.com/advisory/ntap-20190611-0002/(af854a3a-2127-422b-91ae-364da2661108)

Correlations IOC

Aucune correlation enregistree

This product uses data from the NVD API but is not endorsed or certified by the NVD.