Vulnerability Details : CVE-2011-4605
The (1) JNDI service, (2) HA-JNDI service, and (3) HAJNDIFactory invoker servlet in JBoss Enterprise Application Platform 4.3.0 CP10 and 5.1.2, Web Platform 5.1.2, SOA Platform 4.2.0.CP05 and 4.3.0.CP05, Portal Platform 4.3 CP07 and 5.2.x before 5.2.2, and BRMS Platform before 5.3.0 do not properly restrict write access, which allows remote attackers to add, delete, or modify items in a JNDI tree via unspecified vectors.
Exploit prediction scoring system (EPSS) score for CVE-2011-4605
Probability of exploitation activity in the next 30 days: 1.65%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 86 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2011-4605
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
7.5
|
HIGH | AV:N/AC:L/Au:N/C:P/I:P/A:P |
10.0
|
6.4
|
NIST |
CWE ids for CVE-2011-4605
-
Assigned by: nvd@nist.gov (Primary)
References for CVE-2011-4605
-
http://rhn.redhat.com/errata/RHSA-2012-1026.html
RHSA-2012:1026 - Security Advisory - Red Hat Customer Portal
-
http://www.securitytracker.com/id?1027501
JBoss 'ignoreBaseDecision' Property May Let Remote Authenticated Users Bypass Access Controls - SecurityTracker
-
http://rhn.redhat.com/errata/RHSA-2012-1295.html
Red Hat Customer Portal
-
http://rhn.redhat.com/errata/RHSA-2012-1023.html
Red Hat Customer Portal
-
http://rhn.redhat.com/errata/RHSA-2012-1027.html
RHSA-2012:1027 - Security Advisory - Red Hat Customer Portal
-
http://rhn.redhat.com/errata/RHSA-2012-1109.html
Red Hat Customer Portal
-
http://rhn.redhat.com/errata/RHSA-2012-1125.html
Red Hat Customer Portal
-
http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=766469
766469 – (CVE-2011-4605) CVE-2011-4605 JNDI: unauthenticated remote write access is permitted by default
-
http://rhn.redhat.com/errata/RHSA-2012-1025.html
RHSA-2012:1025 - Security Advisory - Red Hat Customer Portal
-
http://rhn.redhat.com/errata/RHSA-2012-1232.html
Red Hat Customer Portal
-
http://www.securityfocus.com/bid/54644
JBoss Enterprise Application Platform CVE-2011-4605 Security Bypass Vulnerability
-
http://rhn.redhat.com/errata/RHSA-2012-1024.html
RHSA-2012:1024 - Security Advisory - Red Hat Customer Portal
-
http://rhn.redhat.com/errata/RHSA-2012-1022.html
RHSA-2012:1022 - Security Advisory - Red Hat Customer Portal
-
http://rhn.redhat.com/errata/RHSA-2012-1028.html
Red Hat Customer Portal
Products affected by CVE-2011-4605
- cpe:2.3:a:redhat:jboss_enterprise_application_platform:5.1.2:*:*:*:*:*:*:*
- cpe:2.3:a:redhat:jboss_enterprise_application_platform:4.3.0:cp10:*:*:*:*:*:*
- cpe:2.3:a:redhat:jboss_enterprise_soa_platform:4.2.0:cp05:*:*:*:*:*:*
- cpe:2.3:a:redhat:jboss_enterprise_soa_platform:4.3.0:cp05:*:*:*:*:*:*
- cpe:2.3:a:redhat:jboss_enterprise_web_platform:5.1.2:*:*:*:*:*:*:*
- cpe:2.3:a:redhat:jboss_enterprise_portal_platform:5.2.0:*:*:*:*:*:*:*
- cpe:2.3:a:redhat:jboss_enterprise_portal_platform:4.3.0:cp07:*:*:*:*:*:*
- cpe:2.3:a:redhat:jboss_enterprise_portal_platform:5.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:redhat:jboss_enterprise_brms_platform:*:*:*:*:*:*:*:*