Back to bug 743006
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Jan Lieskovsky | 2011-10-03 14:51:46 UTC | Priority | unspecified | low |
| CC | dwalluck, fnasser, mbenitez, pcheung | |||
| Whiteboard | public=no,reported=20111003,source=secalert,cvss2=3.5/AV:N/AC:M/Au:S/C:N/I:N/A:P | |||
| Severity | unspecified | low | ||
| Jan Lieskovsky | 2011-10-03 15:19:24 UTC | Blocks | 743016 | |
| Jan Lieskovsky | 2011-10-03 15:34:05 UTC | CC | jclere | |
| Jan Lieskovsky | 2011-10-03 16:28:04 UTC | CC | db.pub.mail | |
| David Jorm | 2011-10-05 07:30:25 UTC | CC | djorm | |
| David Jorm | 2011-10-06 06:31:10 UTC | CC | junpark | |
| Vincent Danen | 2011-10-06 14:13:24 UTC | CC | smilner, vdanen | |
| David Jorm | 2011-10-10 04:32:23 UTC | Priority | low | medium |
| Summary | EMBARGOED JBoss AS: Properly specify list of URIs which can access management console information (information leak) | EMBARGOED CVE-2011-3609 JBoss AS: CSRF in the administration console & HTTP management API | ||
| Alias | CVE-2011-3609 | |||
| Whiteboard | public=no,reported=20111003,source=secalert,cvss2=3.5/AV:N/AC:M/Au:S/C:N/I:N/A:P | public=no,reported=20111003,source=secalert,impact=moderate,cvss2=4.6/AV:N/AC:H/Au:S/C:P/I:P/A:P | ||
| Severity | low | medium | ||
| David Jorm | 2011-10-11 02:49:51 UTC | CC | jawilson | |
| David Jorm | 2011-10-11 02:53:14 UTC | CC | atangrin | |
| David Jorm | 2011-10-11 02:56:02 UTC | CC | dlofthouse | |
| David Jorm | 2011-10-12 08:45:10 UTC | Group | security, qe_staff | |
| Summary | EMBARGOED CVE-2011-3609 JBoss AS: CSRF in the administration console & HTTP management API | CVE-2011-3609 JBoss AS: CSRF in the administration console & HTTP management API | ||
| Whiteboard | public=no,reported=20111003,source=secalert,impact=moderate,cvss2=4.6/AV:N/AC:H/Au:S/C:P/I:P/A:P | public=20111012,reported=20111003,source=secalert,impact=moderate,cvss2=2.6/AV:N/AC:H/Au:N/C:N/I:P/A:N | ||
| Tim Kramer | 2011-11-07 18:54:52 UTC | CC | tkramer | |
| Kurt Seifried | 2011-11-17 17:03:48 UTC | CC | kseifried | |
| David Jorm | 2011-12-02 04:12:51 UTC | Status | NEW | CLOSED |
| Resolution | --- | NOTABUG | ||
| Last Closed | 2011-12-01 23:12:51 UTC | |||
| Adam Mariš | 2015-07-31 14:42:35 UTC | CC | amaris | |
| Whiteboard | public=20111012,reported=20111003,source=secalert,impact=moderate,cvss2=2.6/AV:N/AC:H/Au:N/C:N/I:P/A:N | public=20111012,reported=20111003,source=researcher,impact=moderate,cvss2=2.6/AV:N/AC:H/Au:N/C:N/I:P/A:N | ||
| Ján Rusnačko | 2016-03-04 12:28:08 UTC | Whiteboard | public=20111012,reported=20111003,source=researcher,impact=moderate,cvss2=2.6/AV:N/AC:H/Au:N/C:N/I:P/A:N | public=20111012,reported=20111003,source=researcher,impact=moderate,cvss2=2.6/AV:N/AC:H/Au:N/C:N/I:P/A:N,cwe=CWE-352[auto] |
| Adam Mariš | 2016-11-08 16:22:22 UTC | CC | amaris | |
| Product Security DevOps Team | 2019-09-29 12:48:01 UTC | Whiteboard | public=20111012,reported=20111003,source=researcher,impact=moderate,cvss2=2.6/AV:N/AC:H/Au:N/C:N/I:P/A:N,cwe=CWE-352[auto] |
Back to bug 743006