CVE-2012-1094
published 2020-03-10CVE-2012-1094: JBoss AS 7 prior to 7.1.1 and mod_cluster do not handle default hostname in the same way, which can cause the excluded-contexts list to be mismatched and the…
high7.5CVSS 3.1
AVNACLPRNUINSUCHINAN
JBoss AS 7 prior to 7.1.1 and mod_cluster do not handle default hostname in the same way, which can cause the excluded-contexts list to be mismatched and the root context to be exposed.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| redhat | jboss_application_server | >= 7.0.0 < 7.1.1 | 7.1.1 |