CVE-2017-12189

Summary

It was discovered that the jboss init script as used in Red Hat JBoss Enterprise Application Platform 7.0.7.GA performed unsafe file handling which could result in local privilege escalation. This issue is a result of an incomplete fix for CVE-2016-8656.

Affected Software

VendorProductVersion RangeStatus
Red Hat, Inc.Red Hat JBoss Enterprise Application Platform7.0.7.GAaffected

Weaknesses

  • CWE-282: CWE-282

ADP Enrichment

CVE Program Container

Additional References

References