Filtered by vendor Redhat
Subscriptions
Filtered by product Jboss Operations Network
Subscriptions
Total
24 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2012-0062 | 1 Redhat | 1 Jboss Operations Network | 2014-02-14 | N/A |
| Red Hat JBoss Operations Network (JON) before 2.4.2 and 3.0.x before 3.0.1 allows remote attackers to hijack agent sessions via an agent registration request without a security token. | ||||
| CVE-2012-0052 | 1 Redhat | 1 Jboss Operations Network | 2014-02-14 | N/A |
| Red Hat JBoss Operations Network (JON) before 2.4.2 and 3.0.x before 3.0.1 does not check the JON agent key, which allows remote attackers to spoof the identity of arbitrary agents via the registered agent name. | ||||
| CVE-2013-4452 | 1 Redhat | 1 Jboss Operations Network | 2013-12-26 | N/A |
| Red Hat JBoss Operations Network 3.1.2 uses world-readable permissions for the (1) server and (2) agent configuration files, which allows local users to obtain authentication credentials and other unspecified sensitive information by reading these files. | ||||
| CVE-2013-4293 | 1 Redhat | 1 Jboss Operations Network | 2013-10-25 | N/A |
| The server in Red Hat JBoss Operations Network (JON) 3.1.2 logs passwords in plaintext, which allows local users to obtain sensitive information by reading the log files. | ||||