CVE-2012-0052

{"id": "CVE-2012-0052", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.8, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 4.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2014-02-14T15:55:04.750", "references": [{"url": "http://rhn.redhat.com/errata/RHSA-2012-0089.html", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://rhn.redhat.com/errata/RHSA-2012-0406.html", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=781964", "source": "secalert@redhat.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-20"}]}], "descriptions": [{"lang": "en", "value": "Red Hat JBoss Operations Network (JON) before 2.4.2 and 3.0.x before 3.0.1 does not check the JON agent key, which allows remote attackers to spoof the identity of arbitrary agents via the registered agent name."}, {"lang": "es", "value": "Red Hat JBoss Operations Network (JON) anterior a 2.4.2 y 3.0.x anterior a 3.0.1 no comprueba la clave del agente JON, lo que permite a atacantes remotos falsificar la identidad de agentes arbitrarios a trav\u00e9s del nombre del agente registrado."}], "lastModified": "2014-02-14T18:44:12.440", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:redhat:jboss_operations_network:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "87E50BCC-4B27-43F7-8AB3-EC27297C4B2C", "versionEndIncluding": "2.4.1"}, {"criteria": "cpe:2.3:a:redhat:jboss_operations_network:2.0.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D29DC3CE-E782-47F7-BDF4-4AB63728F05B"}, {"criteria": "cpe:2.3:a:redhat:jboss_operations_network:2.0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DF4A10F6-2128-4986-8A28-BD9B679D8380"}, {"criteria": "cpe:2.3:a:redhat:jboss_operations_network:2.1.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3B720DED-23EE-4830-9C8B-441A38DAE80E"}, {"criteria": "cpe:2.3:a:redhat:jboss_operations_network:2.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0FD44168-A91A-4043-8C34-7A20DC2C1A19"}, {"criteria": "cpe:2.3:a:redhat:jboss_operations_network:2.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "66926B59-4A4F-47B9-9B2B-3D8DC698BC97"}, {"criteria": "cpe:2.3:a:redhat:jboss_operations_network:2.3.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D72DFB62-EEA6-4126-9DC3-B191CC8D0CA5"}, {"criteria": "cpe:2.3:a:redhat:jboss_operations_network:2.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B8DBE132-2A98-40C6-947F-50C1D06DDFB1"}, {"criteria": "cpe:2.3:a:redhat:jboss_operations_network:3.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C077D692-150C-4AE9-8C0B-7A3EA5EB1100"}], "operator": "OR"}]}], "sourceIdentifier": "secalert@redhat.com"}