cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2012-5626,https://securityvulnerability.io/vulnerability/CVE-2012-5626,,"EJB method in Red Hat JBoss BRMS 5; Red Hat JBoss Enterprise Application Platform 5; Red Hat JBoss Operations Network 3.1; Red Hat JBoss Portal 4 and 5; Red Hat JBoss SOA Platform 4.2, 4.3, and 5; in Red Hat JBoss Enterprise Web Server 1 ignores roles specified using the @RunAs annotation.",Red Hat,"Jboss Brms,Jboss Enterprise Application Platform,Jboss Operations Network,Jboss Portal,Jboss Soa Platform,Jboss Enterprise Web Server",7.5,HIGH,0.0008999999845400453,false,false,false,false,,false,false,2020-01-23T18:10:30.000Z,0
CVE-2014-0245,https://securityvulnerability.io/vulnerability/CVE-2014-0245,,"It was found that the implementation of the GTNSubjectCreatingInterceptor class in gatein-wsrp was not thread safe. For a specific WSRP endpoint, under high-concurrency scenarios or scenarios where SOAP messages take long to execute, it was possible for an unauthenticated remote attacker to gain privileged information if WS-Security is enabled for the WSRP Consumer, and the endpoint in question is being used by a privileged user. This affects JBoss Portal 6.2.0.",Red Hat,Jboss Portal,5.9,MEDIUM,0.002859999891370535,false,false,false,false,,false,false,2020-01-02T19:42:50.000Z,0