Redhat » Jboss Enterprise Application Platform : Security Vulnerabilities, CVEs, Published In 2009 (Information Leak)
Twiddle in Red Hat JBoss Enterprise Application Platform (aka JBoss EAP or JBEAP) 4.2 before 4.2.0.CP08 and 4.3 before 4.3.0.CP07 writes the JMX password, and other command-line arguments, to the twiddle.log file, which allows local users to obtain sensitive information by reading this file.
Max CVSS
2.1
EPSS Score
0.04%
Published
2009-12-15
Updated
2017-08-17
1 vulnerabilities found