CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2016-5062

The web server in Aternity before 9.0.1 does not require authentication for getMBeansFromURL loading of Java MBeans, which allows remote attackers to execute arbitrary Java code by registering MBeans.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 63.8%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 9.3

References

http://www.kb.cert.org/vuls/id/706359
http://www.securityfocus.com/bid/93208
http://www.kb.cert.org/vuls/id/706359
http://www.securityfocus.com/bid/93208

Products affected by CVE-2016-5062

Aternity » Aternity » Version: N/A

cpe:2.3:a:aternity:aternity:-
Aternity » Aternity » Version: 9.0

cpe:2.3:a:aternity:aternity:9.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-5062

Products

Pricing

Contact Us