CVE-2013-4293Redhat Jboss Operations Network vulnerability

CWE-3105 documents5 sources
Severity
2.1LOWNVD
EPSS
0.0%
top 85.03%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Redhat Jboss Operations Network
Timeline
PublishedOct 24
Latest updateMay 17

Description

The server in Red Hat JBoss Operations Network (JON) 3.1.2 logs passwords in plaintext, which allows local users to obtain sensitive information by reading the log files.

CVSS vector

AV:L/AC:L/C:P/I:N/A:NExploitability: 3.9 | Impact: 2.9

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-5w4q-rmc5-c8xw: The server in Red Hat JBoss Operations Network (JON) 32022-05-17
CVEList
CVE-2013-4293: The server in Red Hat JBoss Operations Network (JON) 32013-10-24

📋Vendor Advisories

1
Red Hat
Server: Plaintext passwords in server logs2013-10-21

💬Community

1
Bugzilla
CVE-2013-4293 JON Server: Plaintext passwords in server logs2013-08-30
CVE-2013-4293 — Redhat vulnerability | cvebase