CVE-2013-2102 — Vulnetix

Try Vulnetix Request Demo

CVE-2013-2102 PUBLISHED CVSS 3.299999952316284 LOW

The default configuration of Red Hat JBoss Portal before 6.1.0 enables the JGroups diagnostics service with no authentication when a JGroups channel is started, which allows remote attackers to obtain sensitive information (diagnostics) by accessing the service.

EPSS 0.14% · 33.7th percentile

Risk Scores

CVSS v2.0

3.299999952316284

EPSS Score

0.14%

33.7th percentile

Affected Products

Vendor	Product	Versions
n/a	n/a	n/a
redhat	jboss_enterprise_portal_platform	0, 4.3.0, 5.0.0

Timeline

Oct 28, 2013 CVE Published
Feb 4, 2022 EPSS Score
Mar 28, 2022 EPSS Score
May 19, 2022 EPSS Score
Jul 10, 2022 EPSS Score
Sep 1, 2022 EPSS Score
Oct 23, 2022 EPSS Score
Dec 14, 2022 EPSS Score
Feb 4, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Mar 28, 2023 EPSS Score
May 19, 2023 EPSS Score

References

RHSA-2013:1437 vendor-advisory
https://bugzilla.redhat.com/show_bug.cgi?id=963984 url
https://nvd.nist.gov/vuln/detail/CVE-2013-2102 advisory

Open in Interactive Console →