← Back

CVE-2014-8175

nvd nist
Published: Jul 8, 2015Modified: May 6, 2026

JSON object

Loading...
6.0
Vector
AV:N/AC:M/Au:S/C:P/I:P/A:P
Exploitability: 6.8 / Impact: 6.4
Source: NVD

Description

Red Hat JBoss Fuse before 6.2.0 allows remote authenticated users to bypass intended restrictions and access the HawtIO console by leveraging an account defined in the users.properties file.

Affected (1)

Products: Redhat: Jboss Fuse
Redhat
1 product
Jboss Fuse
Configuration A
1 vulnerable
Vulnerable SoftwareAffected Versions
Jboss Fuse
Up to 6.1.0

Related CWEs

CWE-264
CWE-264

References (4)

Source: secalert@redhat.com
Source: secalert@redhat.com
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.