CN
CyberNewsUz
Threat Intelligence Portal
LOADING0%
CyberNewsUz
Threat Intelligence Portal
CyberNewsUz
Threat Intelligence Portal
JBoss Seam 2 (jboss-seam2), Red Hat Linux uchun JBoss Enterprise Application Platform 4.3.0 da qo‘llanganidek, JBoss Expression Language (EL) iboralari uchun kirishlarni to‘g‘ri sanitarizatsiya qilmaydi, bu esa masofaviy tajovuzkorlarga yaratilgan URL orqali ixtiyoriy kodni bajarishga imkon beradi. QAYD: bu faqat Java Xavfsizlik menejeri to'g'ri sozlanmagandagi zaiflikdir.
Vendor
Redhat
Product
Jboss Enterprise Application Platform
CVSS Score
8.8
Nashr sanasi
5-avg, 2010
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H