Vulnerability Database

314,343

Total vulnerabilities in the database

CVE-2016-7066

It was found that the improper default permissions on /tmp/auth directory in JBoss Enterprise Application Platform before 7.1.0 can allow any local user to connect to CLI and allow the user to execute any arbitrary operations.

Published: Sep 11, 2018
Updated: Nov 9, 2025
CVE: CVE-2016-7066
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 4.6
AV:L/AC:L/Au:N/C:P/I:P/A:P

CWEs:

CWE-275
CWE-266

Affected Software
References

Software	From	Fixed in
redhat / jboss_enterprise_application_platform	-	7.1.0

https://access.redhat.com/errata/RHSA-2017:3456
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-7066

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo