CVE-2011-2908 vulnerability in Red Hat Products
Published on November 23, 2012

Cross-site request forgery (CSRF) vulnerability in the JMX Console (jmx-console) in JBoss Enterprise Portal Platform before 5.2.2, BRMS Platform 5.3.0 before roll up patch1, and SOA Platform 5.3.0 allows remote authenticated users to hijack the authentication of arbitrary users for requests that perform operations on MBeans and possibly execute arbitrary code via unspecified vectors.

Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory NVD

Products Associated with CVE-2011-2908

Want to know whenever a new CVE is published for Red Hat products? stack.watch will email you.

Red Hat Jboss Enterprise Portal Platform

Red Hat Jboss Enterprise Brms Platform

Red Hat Jboss Enterprise Soa Platform

Exploit Probability

EPSS

0.72%

Percentile

72.12%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2011-2908 vulnerability in Red Hat ProductsPublished on November 23, 2012

Products Associated with CVE-2011-2908

Exploit Probability

CVE-2011-2908 vulnerability in Red Hat Products
Published on November 23, 2012