Talend ESB Runtime in all versions from 5.1 to 7.3.1-R2021-09, 7.2.1-R2021-09, 7.1.1-R2021-09, has an unauthenticated Jolokia HTTP endpoint which allows remote access to the JMX of the runtime container, which would allow an attacker the ability to read or modify the container or software running in the container.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2021-09-22T16:35:35
Updated: 2024-08-04T02:51:06.515Z
Reserved: 2021-09-07T00:00:00
Link: CVE-2021-40684
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2021-09-22T17:15:12.313
Modified: 2022-07-12T17:42:04.277
Link: CVE-2021-40684
Redhat
No data.