VDB
CVE-2017-12189
CVE-2017-12189
PUBLISHED
CVSS 4.599999904632568 MEDIUM
It was discovered that the jboss init script as used in Red Hat JBoss Enterprise Application Platform 7.0.7.GA performed unsafe file handling which could result in local privilege escalation. This issue is a result of an incomplete fix for CVE-2016-8656.
EPSS 0.05% · 15.7th percentile
Risk Scores
CVSS 2.0
4.599999904632568
EPSS Score
0.05%
15.7th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| redhat | enterprise_linux | 6.0, 7.0 |
| Red Hat, Inc. | Red Hat JBoss Enterprise Application Platform | 7.0.7.GA |
| redhat | jboss_enterprise_application_platform | 7.0 |
Exploit Intelligence
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-12189 (circl)
- RHSA-2018:0002 (circl)
- RHSA-2018:0004 (circl)
- RHSA-2018:0003 (circl)
- RHSA-2018:0005 (circl)
- 102407 (circl)
Timeline
- Jan 10, 2018 CVE Published
- Apr 14, 2021 EPSS Score
- Jun 23, 2021 EPSS Score
- Aug 24, 2021 EPSS Score
- Oct 26, 2021 EPSS Score
- Dec 27, 2021 EPSS Score
- Feb 28, 2022 EPSS Score
- May 2, 2022 EPSS Score
- Jul 3, 2022 EPSS Score
- Sep 5, 2022 EPSS Score
- Nov 6, 2022 EPSS Score
- Jan 8, 2023 EPSS Score
References
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-12189 url
- RHSA-2018:0002 vendor-advisory
- RHSA-2018:0004 vendor-advisory
- RHSA-2018:0003 vendor-advisory
- RHSA-2018:0005 vendor-advisory
- 102407 vdb
- https://nvd.nist.gov/vuln/detail/CVE-2017-12189 advisory