Security Advisory

CVE-2016-5422

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2016-09-07 19:00:00

Last updated 2024-08-06 01:00:59

Assigner redhat

State PUBLISHED

Description

The web console in Red Hat JBoss Operations Network (JON) before 3.3.7 does not properly authorize requests to add users with the super user role, which allows remote authenticated users to gain admin privileges via a crafted POST request.

← Browse all CVEs View on cve.org ↗