CVE-2010-2474
10.08.2010, 12:23
JBoss Enterprise Service Bus (ESB) before 4.7 CP02 in JBoss Enterprise SOA Platform before 5.0.2 does not properly consider the security domain with which a service is secured, which might allow remote attackers to gain privileges by executing a service.Enginsight
| Vendor | Product | Version |
|---|---|---|
| redhat | jboss_enterprise_service_bus | 𝑥 ≤ 4.7 |
| redhat | jboss_enterprise_service_bus | 4.0 |
| redhat | jboss_enterprise_service_bus | 4.2 |
| redhat | jboss_enterprise_service_bus | 4.2.1 |
| redhat | jboss_enterprise_service_bus | 4.3 |
| redhat | jboss_enterprise_service_bus | 4.4 |
| redhat | jboss_enterprise_service_bus | 4.5 |
| redhat | jboss_enterprise_service_bus | 4.6 |
| redhat | jboss_enterprise_soa_platform | 4.2.0 |
| redhat | jboss_enterprise_soa_platform | 4.2.0:cp01 |
| redhat | jboss_enterprise_soa_platform | 4.2.0:cp02 |
| redhat | jboss_enterprise_soa_platform | 4.2.0:cp03 |
| redhat | jboss_enterprise_soa_platform | 4.2.0:cp04 |
| redhat | jboss_enterprise_soa_platform | 4.2.0:cp05 |
| redhat | jboss_enterprise_soa_platform | 4.2.0:tp02 |
| redhat | jboss_enterprise_soa_platform | 4.3.0 |
| redhat | jboss_enterprise_soa_platform | 4.3.0:cp01 |
| redhat | jboss_enterprise_soa_platform | 4.3.0:cp02 |
| redhat | jboss_enterprise_soa_platform | 4.3.0:cp03 |
| redhat | jboss_enterprise_soa_platform | 4.3.0:cp04 |
| redhat | jboss_enterprise_soa_platform | 5.0.0 |
| redhat | jboss_enterprise_soa_platform | 5.0.1 |
𝑥
= Vulnerable software versions
Ubuntu Releases
Common Weakness Enumeration
References