← volver
CVE-2010-1429

CVE-2010-1429

EPSS 53.7%
Vexday Risk Score
30Bajo
Decisión SSVC (CISA)
Attend
PoC disponible → seguir de cerca
Madurez del exploit
Exploit funcional
Exploit automatizable disponible (Nuclei/Metasploit).
CVSS EPSS 53.7%KEV nãoPoC Nuclei simMetasploit simPatch referenciado
Ciclo de vida
28 abr 2010Publicada en NVD
Recomendación: Planificar corrección próxima — ya existe PoC pública.
Red Hat JBoss Enterprise Application Platform (aka JBoss EAP or JBEAP) 4.2 before 4.2.0.CP09 and 4.3 before 4.3.0.CP08 allows remote attackers to obtain sensitive information about "deployed web contexts" via a request to the status servlet, as demonstrated by a full=true query string. NOTE: this issue exists because of a CVE-2008-3273 regression.
Productos afectados
n/a · n/a