Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-0018


Vulnerability Score 1.9 1.9
CVE Id CVE-2014-0018
Last Modified 18 Feb 2014 10:54:09
Published 14 Feb 2014 10:55:05
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity MEDIUM
Authentication NONE



Red Hat JBoss Enterprise Application Platform (JBEAP) 6.2.0 and JBoss WildFly Application Server, when run under a security manager, do not properly restrict access to the Modular Service Container (MSC) service registry, which allows local users to modify the server via a crafted deployment.

Vulnerable Systems


  • Redhat Jboss Enterprise Application Platform 6.2.0

  • Redhat Jboss Wildfly Application Server -



REDHAT - RHSA-2014:0172

REDHAT - RHSA-2014:0171

REDHAT - RHSA-2014:0170

Last Updated: 27 May 2016 11:04:28