CVE-2016-7066

CVE-2016-7066

Vendor Red Hat
Product JBoss Enterprise Application Platform
Weakness CWE-266
Published September 11, 2018
Last update August 6, 2024

CVSS base score

What the vulnerability does

01Description

It was found that the improper default permissions on /tmp/auth directory in JBoss Enterprise Application Platform before 7.1.0 can allow any local user to connect to CLI and allow the user to execute any arbitrary operations.

Key dates

02Disclosure timeline

September 11, 2018 CVE published
August 6, 2024 Record updated