CVE-2011-4573
01.04.2014, 06:35
Red Hat JBoss Operations Network (JON) before 2.4.2 does not properly enforce "modify resource" permissions for remote authenticated users when deleting a plug-in configuration update from the group connection properties history, which prevents such activities from being recorded in the audit trail.Enginsight
| Vendor | Product | Version |
|---|---|---|
| redhat | jboss_operations_network | 𝑥 ≤ 2.4.1 |
| redhat | jboss_operations_network | 1.0.0 |
| redhat | jboss_operations_network | 2.0.0 |
| redhat | jboss_operations_network | 2.0.1 |
| redhat | jboss_operations_network | 2.1.0 |
| redhat | jboss_operations_network | 2.2 |
| redhat | jboss_operations_network | 2.3 |
| redhat | jboss_operations_network | 2.3.1 |
| redhat | jboss_operations_network | 2.4 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration