CVE-2018-14324

by Fred · 16/07/2018

The demo feature in Oracle GlassFish Open Source Edition 5.0 has TCP port 7676 open by default with a password of admin for the admin account. This allows remote attackers to obtain potentially sensitive information, perform database operations, or manipulate the demo via a JMX RMI session, aka a "jmx_rmi remote monitoring and control problem." NOTE: this is not an Oracle supported product.

Date published : 2018-07-16

https://github.com/eclipse-ee4j/glassfish/issues/22500

http://www.securitytracker.com/id/1041292

CVE-2018-14324

Similar

Recent Posts

Categories

CVE-2018-14324

Share this:

Similar

Recent Posts

Categories

Tags