Vulnerability Database

296,147

Total vulnerabilities in the database

CVE-2012-0062

Red Hat JBoss Operations Network (JON) before 2.4.2 and 3.0.x before 3.0.1 allows remote attackers to hijack agent sessions via an agent registration request without a security token.

Published: Feb 14, 2014
Updated: Apr 13, 2023
CVE: CVE-2012-0062
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5.8
AV:N/AC:M/Au:N/C:P/I:P/A:N

CWEs:

CWE-287

OWASP TOP 10:

A2 - Broken Authentication

Affected Software
References

Software	From	Fixed in
redhat / jboss_operations_network	3.0	3.0.x
redhat / jboss_operations_network	-	2.4.1.x
redhat / jboss_operations_network	2.3.1	2.3.1.x
redhat / jboss_operations_network	2.4	2.4.x
redhat / jboss_operations_network	2.0.1	2.0.1.x
redhat / jboss_operations_network	2.1.0	2.1.0.x
redhat / jboss_operations_network	2.3	2.3.x
redhat / jboss_operations_network	2.0.0	2.0.0.x
redhat / jboss_operations_network	2.2	2.2.x