CVE-2011-2908

EXPLOITED RANSOMWARE

JBoss Enterprise Portal Platform < 5.2.1 - Authenticated Cross-Site Request Forgery

Title source: llm
STIX 2.1

Exploitation Summary

CVE-2011-2908 has been observed exploited in the wild (reported by VulnCheck KEV), including in ransomware campaigns.

Description

Cross-site request forgery (CSRF) vulnerability in the JMX Console (jmx-console) in JBoss Enterprise Portal Platform before 5.2.2, BRMS Platform 5.3.0 before roll up patch1, and SOA Platform 5.3.0 allows remote authenticated users to hijack the authentication of arbitrary users for requests that perform operations on MBeans and possibly execute arbitrary code via unspecified vectors.

References (18)

Core 18
Core References
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2013-0198.html
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2013-0195.html
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2013-0196.html
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2013-0197.html
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2012-1165.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/54915
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/77549
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/50230
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2013-0192.html
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2012-1152.html
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2013-0193.html
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/51984
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/50549
Issue Tracking x_refsource_misc
https://bugzilla.redhat.com/show_bug.cgi?id=730176
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2013-0191.html
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2012-1232.html
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2013-0194.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/84530

Scores

EPSS 0.0157
EPSS Percentile 72.4%

Details

VulnCheck KEV 2016-03-25
Ransomware Use Confirmed
CWE
CWE-352
Status published
Products (8)
redhat/jboss_enterprise_brms_platform 5.3.0
redhat/jboss_enterprise_portal_platform 5.0.0
redhat/jboss_enterprise_portal_platform 5.0.1
redhat/jboss_enterprise_portal_platform 5.1.0
redhat/jboss_enterprise_portal_platform 5.1.1
redhat/jboss_enterprise_portal_platform 5.2.0
redhat/jboss_enterprise_portal_platform < 5.2.1
redhat/jboss_enterprise_soa_platform 5.3.0
Published Nov 23, 2012
Tracked Since Feb 18, 2026