Description
Red Hat JBoss Enterprise Application Platform (JBEAP) 6.2.2, when using a Java Security Manager (JSM), does not properly apply permissions defined by a policy file, which causes applications to be granted the java.security.AllPermission permission and allows remote attackers to bypass intended access restrictions.
Analysis
Analysis and contextual insights are available on OpenCVE Cloud.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| n/a | n/a | affected |
|
| Package | CPE | Advisory | Released Date |
|---|---|---|---|
| Red Hat JBoss BPMS 6.0 | |||
| eap | cpe:/a:redhat:jboss_bpms:6.0 | RHSA-2014:1291 | 2014-09-23T00:00:00Z |
| Red Hat JBoss BRMS 6.0 | |||
| eap | cpe:/a:redhat:jboss_brms:6.0 | RHSA-2014:1290 | 2014-09-23T00:00:00Z |
| Red Hat JBoss Enterprise Application Platform 6.2 | |||
| server | cpe:/a:redhat:jboss_enterprise_application_platform:6.2.2 | RHSA-2014:0345 | 2014-03-31T00:00:00Z |
| Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5 | |||
| apache-cxf-0:2.7.10-1.redhat_1.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| glassfish-jsf-eap6-0:2.1.27-6.redhat_8.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-ejb-client-0:1.0.25-1.Final_redhat_1.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-jsf-api_2.1_spec-0:2.1.27-2.Final_redhat_1.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-metadata-0:7.0.9-1.Final_redhat_1.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-remote-naming-0:1.0.8-1.Final_redhat_1.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-remoting3-0:3.2.19-1.GA_redhat_1.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-security-negotiation-0:2.2.7-1.Final_redhat_1.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jbossws-cxf-0:4.2.4-1.Final_redhat_1.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| picketbox-0:4.0.19-4.SP4_redhat_1.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| wss4j-0:1.6.14-2.redhat_1.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6 | |||
| apache-cxf-0:2.7.10-1.redhat_1.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| glassfish-jsf-eap6-0:2.1.27-6.redhat_8.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-ejb-client-0:1.0.25-1.Final_redhat_1.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-jsf-api_2.1_spec-0:2.1.27-2.Final_redhat_1.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-metadata-0:7.0.9-1.Final_redhat_1.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-remote-naming-0:1.0.8-1.Final_redhat_1.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-remoting3-0:3.2.19-1.GA_redhat_1.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-security-negotiation-0:2.2.7-1.Final_redhat_1.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jbossws-cxf-0:4.2.4-1.Final_redhat_1.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| picketbox-0:4.0.19-4.SP4_redhat_1.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| wss4j-0:1.6.14-2.redhat_1.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| Red Hat JBoss Enterprise Application Platform 6 for RHEL 5 | |||
| ironjacamar-eap6-0:1.0.23-5.Final_redhat_5.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-as-appclient-0:7.3.2-2.Final_redhat_2.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-as-cli-0:7.3.2-2.Final_redhat_2.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-as-client-all-0:7.3.2-2.Final_redhat_2.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-as-clustering-0:7.3.2-2.Final_redhat_2.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-as-cmp-0:7.3.2-2.Final_redhat_2.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-as-configadmin-0:7.3.2-2.Final_redhat_2.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-as-connector-0:7.3.2-2.Final_redhat_2.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-as-controller-0:7.3.2-2.Final_redhat_2.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-as-controller-client-0:7.3.2-2.Final_redhat_2.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jbossas-core-0:7.3.2-2.Final_redhat_2.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-as-core-security-0:7.3.2-2.Final_redhat_2.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-as-deployment-repository-0:7.3.2-2.Final_redhat_2.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-as-deployment-scanner-0:7.3.2-2.Final_redhat_2.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-as-domain-http-0:7.3.2-2.Final_redhat_2.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-as-domain-management-0:7.3.2-2.Final_redhat_2.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-as-ee-0:7.3.2-2.Final_redhat_2.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-as-ee-deployment-0:7.3.2-2.Final_redhat_2.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-as-ejb3-0:7.3.2-2.Final_redhat_2.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-as-embedded-0:7.3.2-2.Final_redhat_2.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-as-host-controller-0:7.3.2-2.Final_redhat_2.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-as-jacorb-0:7.3.2-2.Final_redhat_2.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jbossas-javadocs-0:7.3.2-2.1.Final_redhat_2.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-as-jaxr-0:7.3.2-2.Final_redhat_2.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-as-jaxrs-0:7.3.2-2.Final_redhat_2.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-as-jdr-0:7.3.2-2.Final_redhat_2.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-as-jmx-0:7.3.2-2.Final_redhat_2.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-as-jpa-0:7.3.2-2.Final_redhat_2.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-as-jsf-0:7.3.2-2.Final_redhat_2.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-as-jsr77-0:7.3.2-2.Final_redhat_2.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-as-logging-0:7.3.2-2.Final_redhat_2.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-as-mail-0:7.3.2-2.Final_redhat_2.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-as-management-client-content-0:7.3.2-2.Final_redhat_2.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-as-messaging-0:7.3.2-2.Final_redhat_2.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-as-modcluster-0:7.3.2-2.Final_redhat_2.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jbossas-modules-eap-0:7.3.2-2.Final_redhat_2.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-as-naming-0:7.3.2-2.Final_redhat_2.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-as-network-0:7.3.2-2.Final_redhat_2.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-as-osgi-0:7.3.2-2.Final_redhat_2.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-as-osgi-configadmin-0:7.3.2-2.Final_redhat_2.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-as-osgi-service-0:7.3.2-2.Final_redhat_2.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-as-platform-mbean-0:7.3.2-2.Final_redhat_2.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-as-pojo-0:7.3.2-2.Final_redhat_2.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-as-process-controller-0:7.3.2-2.Final_redhat_2.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jbossas-product-eap-0:7.3.2-2.Final_redhat_2.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-as-protocol-0:7.3.2-2.Final_redhat_2.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-as-remoting-0:7.3.2-2.Final_redhat_2.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-as-sar-0:7.3.2-2.Final_redhat_2.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-as-security-0:7.3.2-2.Final_redhat_2.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-as-server-0:7.3.2-2.Final_redhat_2.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-as-system-jmx-0:7.3.2-2.Final_redhat_2.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-as-threads-0:7.3.2-2.Final_redhat_2.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-as-transactions-0:7.3.2-2.Final_redhat_2.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-as-version-0:7.3.2-2.Final_redhat_2.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-as-web-0:7.3.2-2.Final_redhat_2.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-as-webservices-0:7.3.2-2.Final_redhat_2.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-as-weld-0:7.3.2-2.Final_redhat_2.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-as-xts-0:7.3.2-2.Final_redhat_2.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-el-api_2.2_spec-0:1.0.4-2.Final_redhat_1.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jboss-modules-0:1.3.3-1.Final_redhat_1.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| jbossweb-0:7.3.1-1.Final_redhat_1.1.ep6.el5 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el5 | RHSA-2014:0343 | 2014-03-31T00:00:00Z |
| Red Hat JBoss Enterprise Application Platform 6 for RHEL 6 | |||
| ironjacamar-eap6-0:1.0.23-5.Final_redhat_5.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-as-appclient-0:7.3.2-2.Final_redhat_2.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-as-cli-0:7.3.2-2.Final_redhat_2.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-as-client-all-0:7.3.2-2.Final_redhat_2.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-as-clustering-0:7.3.2-2.Final_redhat_2.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-as-cmp-0:7.3.2-2.Final_redhat_2.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-as-configadmin-0:7.3.2-2.Final_redhat_2.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-as-connector-0:7.3.2-2.Final_redhat_2.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-as-controller-0:7.3.2-2.Final_redhat_2.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-as-controller-client-0:7.3.2-2.Final_redhat_2.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jbossas-core-0:7.3.2-2.Final_redhat_2.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-as-core-security-0:7.3.2-2.Final_redhat_2.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-as-deployment-repository-0:7.3.2-2.Final_redhat_2.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-as-deployment-scanner-0:7.3.2-2.Final_redhat_2.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-as-domain-http-0:7.3.2-2.Final_redhat_2.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-as-domain-management-0:7.3.2-2.Final_redhat_2.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-as-ee-0:7.3.2-2.Final_redhat_2.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-as-ee-deployment-0:7.3.2-2.Final_redhat_2.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-as-ejb3-0:7.3.2-2.Final_redhat_2.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-as-embedded-0:7.3.2-2.Final_redhat_2.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-as-host-controller-0:7.3.2-2.Final_redhat_2.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-as-jacorb-0:7.3.2-2.Final_redhat_2.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jbossas-javadocs-0:7.3.2-2.1.Final_redhat_2.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-as-jaxr-0:7.3.2-2.Final_redhat_2.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-as-jaxrs-0:7.3.2-2.Final_redhat_2.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-as-jdr-0:7.3.2-2.Final_redhat_2.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-as-jmx-0:7.3.2-2.Final_redhat_2.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-as-jpa-0:7.3.2-2.Final_redhat_2.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-as-jsf-0:7.3.2-2.Final_redhat_2.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-as-jsr77-0:7.3.2-2.Final_redhat_2.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-as-logging-0:7.3.2-2.Final_redhat_2.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-as-mail-0:7.3.2-2.Final_redhat_2.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-as-management-client-content-0:7.3.2-2.Final_redhat_2.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-as-messaging-0:7.3.2-2.Final_redhat_2.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-as-modcluster-0:7.3.2-2.Final_redhat_2.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jbossas-modules-eap-0:7.3.2-2.Final_redhat_2.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-as-naming-0:7.3.2-2.Final_redhat_2.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-as-network-0:7.3.2-2.Final_redhat_2.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-as-osgi-0:7.3.2-2.Final_redhat_2.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-as-osgi-configadmin-0:7.3.2-2.Final_redhat_2.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-as-osgi-service-0:7.3.2-2.Final_redhat_2.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-as-platform-mbean-0:7.3.2-2.Final_redhat_2.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-as-pojo-0:7.3.2-2.Final_redhat_2.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-as-process-controller-0:7.3.2-2.Final_redhat_2.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jbossas-product-eap-0:7.3.2-2.Final_redhat_2.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-as-protocol-0:7.3.2-2.Final_redhat_2.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-as-remoting-0:7.3.2-2.Final_redhat_2.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-as-sar-0:7.3.2-2.Final_redhat_2.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-as-security-0:7.3.2-2.Final_redhat_2.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-as-server-0:7.3.2-2.Final_redhat_2.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-as-system-jmx-0:7.3.2-2.Final_redhat_2.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-as-threads-0:7.3.2-2.Final_redhat_2.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-as-transactions-0:7.3.2-2.Final_redhat_2.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-as-version-0:7.3.2-2.Final_redhat_2.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-as-web-0:7.3.2-2.Final_redhat_2.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-as-webservices-0:7.3.2-2.Final_redhat_2.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-as-weld-0:7.3.2-2.Final_redhat_2.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-as-xts-0:7.3.2-2.Final_redhat_2.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-el-api_2.2_spec-0:1.0.4-2.Final_redhat_1.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jboss-modules-0:1.3.3-1.Final_redhat_1.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| jbossweb-0:7.3.1-1.Final_redhat_1.1.ep6.el6 | cpe:/a:redhat:jboss_enterprise_application_platform:6::el6 | RHSA-2014:0344 | 2014-03-31T00:00:00Z |
| Red Hat JBoss Fuse Service Works 6.0 | |||
| eap | cpe:/a:redhat:jboss_fuse_service_works:6.0 | RHSA-2014:1995 | 2014-12-15T00:00:00Z |
| Red Hat JBoss Portal 6.2 | |||
| eap | cpe:/a:redhat:jboss_enterprise_portal_platform:6.2 | RHSA-2015:1009 | 2015-05-14T00:00:00Z |
No data available yet.
Remediation
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
Advisories
| Source | ID | Title |
|---|---|---|
 EUVD |
EUVD-2014-0178 | Red Hat JBoss Enterprise Application Platform (JBEAP) 6.2.2, when using a Java Security Manager (JSM), does not properly apply permissions defined by a policy file, which causes applications to be granted the java.security.AllPermission permission and allows remote attackers to bypass intended access restrictions. |
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: redhat
Published:
Updated: 2024-08-06T09:05:38.305Z
Reserved: 2013-12-03T00:00:00.000Z
Link: CVE-2014-0093
Vulnrichment
No data.
NVD
Status : Modified
Published: 2014-04-03T16:15:12.127
Modified: 2026-05-06T22:30:45.220
Link: CVE-2014-0093
Redhat
OpenCVE Enrichment
No data.
Weaknesses