CVE-2010-0737

A missing permission check was found in The CLI in JBoss Operations Network before 2.3.1 does not properly check permissions, which allows JBoss ON users to perform management tasks and configuration changes with the privileges of the administrator user.

Published: Oct 31, 2019
Updated: Apr 13, 2023
CVE: CVE-2010-0737
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 8
AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CVSS v2:

Severity: Medium
Score: 5.2
AV:A/AC:L/Au:S/C:P/I:P/A:P

CWEs:

CWE-732

Affected Software
References

Software	From	Fixed in
redhat / jboss_operations_network	-	2.3.1

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2010-0737

Vulnerability Database

289,599

CVE-2010-0737