CVE-2012-2312
published 2019-12-18CVE-2012-2312: An Elevated Privileges issue exists in JBoss AS 7 Community Release due to the improper implementation in the security context propagation, A threat gets…
high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
An Elevated Privileges issue exists in JBoss AS 7 Community Release due to the improper implementation in the security context propagation, A threat gets reused from the thread pool that still retains the security context from the process last used, which lets a local user obtain elevated privileges.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| jboss_as_7 | jboss | — | — |
| redhat | jboss_application_server | — | — |
| redhat | jboss_application_server | — | — |
| redhat | jboss_enterprise_application_platform | — | — |