An information disclosure vulnerability was found in JBoss Enterprise Application Platform before 7.0.4. It was discovered that when configuring RBAC and marking information as sensitive, users with a Monitor role are able to view the sensitive information.
History

Fri, 23 Aug 2024 05:15:00 +0000

Type Values Removed Values Added
CPEs cpe:/a:redhat:jboss_enterprise_application_platform:7.1::el7

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2018-09-10T16:00:00

Updated: 2024-08-06T01:50:47.561Z

Reserved: 2016-08-23T00:00:00

Link: CVE-2016-7061

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2018-09-10T16:29:00.667

Modified: 2024-11-21T02:57:22.850

Link: CVE-2016-7061

cve-icon Redhat

Severity : Low

Publid Date: 2016-11-07T00:00:00Z

Links: CVE-2016-7061 - Bugzilla