Vulnerability Description
Red Hat JBoss Operations Network 3.1.2 uses world-readable permissions for the (1) server and (2) agent configuration files, which allows local users to obtain authentication credentials and other unspecified sensitive information by reading these files.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Redhat | Jboss Operations Network | 3.1.2 |
Related Weaknesses (CWE)
References
- http://rhn.redhat.com/errata/RHSA-2013-1762.htmlVendor Advisory
- http://secunia.com/advisories/55852Vendor Advisory
- http://www.securityfocus.com/bid/63916
- http://www.securitytracker.com/id/1029390
- http://rhn.redhat.com/errata/RHSA-2013-1762.htmlVendor Advisory
- http://secunia.com/advisories/55852Vendor Advisory
- http://www.securityfocus.com/bid/63916
- http://www.securitytracker.com/id/1029390
FAQ
What is CVE-2013-4452?
CVE-2013-4452 is a vulnerability with a CVSS score of 2.1 (LOW). Red Hat JBoss Operations Network 3.1.2 uses world-readable permissions for the (1) server and (2) agent configuration files, which allows local users to obtain authentication credentials and other uns...
How severe is CVE-2013-4452?
CVE-2013-4452 has been rated LOW with a CVSS base score of 2.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2013-4452?
Check the references section above for vendor advisories and patch information. Affected products include: Redhat Jboss Operations Network.