Cybersecurity Alerts

Red Hat JBoss Application Server Remote Code Execution Vulnerability

The JBoss Application Server, shipped with Red Hat Enterprise Application Platform 5.2, allows an attacker to execute arbitrary code via crafted serialized data.

Required Action

Apply updates per vendor instructions.

Weakness Classification

CWE-502

References

• https://nvd.nist.gov/vuln/detail/CVE-2017-12149