mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-28 01:04:30 +00:00
873 B
873 B
CVE-2016-6330
Description
The server in Red Hat JBoss Operations Network (JON), when SSL authentication is not configured for JON server / agent communication, allows remote attackers to execute arbitrary code via a crafted HTTP request, related to message deserialization. NOTE: this vulnerability exists because of an incomplete fix for CVE-2016-3737.
POC
Reference
- https://www.tenable.com/security/research/tra-2016-22
- https://www.tenable.com/security/research/tra-2016-22
Github
No PoCs found on GitHub currently.