Vulnerability & Exploit Database

Back to search

JBoss JMX-Console Access Vulnerability

Severity CVSS Published Added Modified
8 (AV:N/AC:L/Au:N/C:P/I:P/A:P) February 20, 2007 April 06, 2007 March 21, 2018

Available Exploits 

Description

The default configuration of JBoss does not restrict access to the (1) console and (2) web management interfaces, which allows remote attackers to bypass authentication and gain administrative access via direct requests.

Scan For This Vulnerability

Use our top-rated tool to discover, prioritize, and remediate your vulnerabilities

 Free InsightVM Trial

References

Solution

jboss-password-fix