Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-0005


Vulnerability Score 3.6 3.6
CVE Id CVE-2014-0005
Last Modified 27 Mar 2015 09:59:08
Published 20 Feb 2015 11:59:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE



PicketBox and JBossSX, as used in Red Hat JBoss Enterprise Application Platform (JBEAP) 6.2.2 and JBoss BRMS before 6.0.3 roll up patch 2, allows remote authenticated users to read and modify the application sever configuration and state by deploying a crafted application.

Vulnerable Systems


  • Redhat Jboss Enterprise Application Platform 6.2.2

  • Redhat Jboss Enterprise Brms Platform 6.0.3


REDHAT - RHSA-2015:0235

REDHAT - RHSA-2015:0234

REDHAT - RHSA-2014:0345

REDHAT - RHSA-2014:0344

REDHAT - RHSA-2014:0343

REDHAT - RHSA-2015:0720

Last Updated: 27 May 2016 11:08:13