Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site request forgery (CSRF) vulnerability in the JMX Console in Red Hat JBoss Enterprise Application Platform (aka JBoss EAP or JBEAP) 4.3 before 4.3.0.CP09 allows remote attackers to hijack the authentication of administrators for requests that deploy WAR files.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Red Hat JBoss JMX Console跨站请求伪造漏洞
Vulnerability Description
Red Hat JBoss Enterprise Application Platform(EAP)是美国红帽(Red Hat)公司的一套开源、基于J2EE的中间件平台。该平台主要用于构建、部署和托管Java应用程序与服务。 Red Hat JBoss Enterprise Application Platform(又名JBoss EAP或者JBEAP)4.3.0.CP09之前的4.3版本中的JMX Console中存在跨站请求伪造漏洞。远程攻击者可以利用该漏洞劫持管理员认证来请求部署WAR文件。
CVSS Information
N/A
Vulnerability Type
N/A