CVE-2011-2908
EXPLOITED RANSOMWAREJBoss Enterprise Portal Platform < 5.2.1 - Authenticated Cross-Site Request Forgery
Title source: llmExploitation Summary
CVE-2011-2908 has been observed exploited in the wild (reported by VulnCheck KEV), including in ransomware campaigns.
Description
Cross-site request forgery (CSRF) vulnerability in the JMX Console (jmx-console) in JBoss Enterprise Portal Platform before 5.2.2, BRMS Platform 5.3.0 before roll up patch1, and SOA Platform 5.3.0 allows remote authenticated users to hijack the authentication of arbitrary users for requests that perform operations on MBeans and possibly execute arbitrary code via unspecified vectors.
References (18)
Core 18
Core References
Vendor Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2013-0198.html
Vendor Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2013-0195.html
Vendor Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2013-0196.html
Vendor Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2013-0197.html
Vendor Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2012-1165.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/54915
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/77549
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/50230
Vendor Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2013-0192.html
Vendor Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2012-1152.html
Vendor Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2013-0193.html
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/51984
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/50549
Issue Tracking x_refsource_misc
https://bugzilla.redhat.com/show_bug.cgi?id=730176
Vendor Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2013-0191.html
Vendor Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2012-1232.html
Vendor Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2013-0194.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/84530
Scores
EPSS
0.0157
EPSS Percentile
72.4%
Details
VulnCheck KEV
2016-03-25
Ransomware Use
Confirmed
CWE
CWE-352
Status
published
Products (8)
redhat/jboss_enterprise_brms_platform
5.3.0
redhat/jboss_enterprise_portal_platform
5.0.0
redhat/jboss_enterprise_portal_platform
5.0.1
redhat/jboss_enterprise_portal_platform
5.1.0
redhat/jboss_enterprise_portal_platform
5.1.1
redhat/jboss_enterprise_portal_platform
5.2.0
redhat/jboss_enterprise_portal_platform
< 5.2.1
redhat/jboss_enterprise_soa_platform
5.3.0
Published
Nov 23, 2012
Tracked Since
Feb 18, 2026