CVE-2021-40684
N/A
N/A
Summary
Talend ESB Runtime in all versions from 5.1 to 7.3.1-R2021-09, 7.2.1-R2021-09, 7.1.1-R2021-09, has an unauthenticated Jolokia HTTP endpoint which allows remote access to the JMX of the runtime container, which would allow an attacker the ability to read or modify the container or software running in the container.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://help.talend.com/r/en-US/7.3/release-notes-esb-products
- https://jira.talendforge.org/browse/SF-141
References
- https://help.talend.com/r/en-US/7.3/release-notes-esb-products
- https://jira.talendforge.org/browse/SF-141
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.