CVE-2007-5085

CWE-287Improper Authentication3 documents3 sources
Severity
5.0MEDIUM
EPSS
0.8%
top 26.73%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Apache Geronimo
Timeline
PublishedSep 26
Latest updateMay 1

Description

Unspecified vulnerability in the management EJB (MEJB) in Apache Geronimo before 2.0.2 allows remote attackers to bypass authentication and obtain "access to Geronimo internals" via unspecified vectors.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

NVDapache/geronimo2.0.1, 2.1+1

🔴Vulnerability Details

2
GHSA
GHSA-5r22-jh36-pj45: Unspecified vulnerability in the management EJB (MEJB) in Apache Geronimo before 22022-05-01
CVEList
CVE-2007-5085: Unspecified vulnerability in the management EJB (MEJB) in Apache Geronimo before 22007-09-26
CVE-2007-5085 (MEDIUM CVSS 5) | Unspecified vulnerability in the ma | cvebase.io