What is the severity of CVE-2012-0052?

CVE-2012-0052 is classified as a medium severity vulnerability due to the potential for unauthorized access to a JON server.

How do I fix CVE-2012-0052?

To fix CVE-2012-0052, update the Red Hat JBoss Operations Network to a version that is not affected by this vulnerability.

Which versions of Red Hat JBoss Operations Network are affected by CVE-2012-0052?

CVE-2012-0052 affects multiple versions of Red Hat JBoss Operations Network including versions from 2.0.0 to 2.4.1.

What impact does CVE-2012-0052 have on my system?

If exploited, CVE-2012-0052 allows an attacker to impersonate a registered JON agent, potentially leading to unauthorized control and data access.

Is there a workaround for CVE-2012-0052?

There are no documented workarounds for CVE-2012-0052, and users are advised to upgrade to a secure version.

Vulnerability/
CVE-2012-0052

medium

5.8

CWE

16/1/2012

14/2/2014

29/9/2019

CVE-2012-0052: Input Validation

First published: Mon Jan 16 2012(Updated: )

If a JON agent is registered in a JON server's inventory with a given name, then any other agent can connect to the JON server and assume the identity of this registered agent simply by assuming its agent name. The JON agent key is not verified, allowing malicious JON agents to connect to the server.

Credit: secalert@redhat.com

Affected Software	Affected Version	How to fix
Red Hat JBoss Operations Network	<=2.4.1
Red Hat JBoss Operations Network	=2.0.0
Red Hat JBoss Operations Network	=2.0.1
Red Hat JBoss Operations Network	=2.1.0
Red Hat JBoss Operations Network	=2.2
Red Hat JBoss Operations Network	=2.3
Red Hat JBoss Operations Network	=2.3.1
Red Hat JBoss Operations Network	=2.4
Red Hat JBoss Operations Network	=3.0

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2012-0052?
CVE-2012-0052 is classified as a medium severity vulnerability due to the potential for unauthorized access to a JON server.
How do I fix CVE-2012-0052?
To fix CVE-2012-0052, update the Red Hat JBoss Operations Network to a version that is not affected by this vulnerability.
Which versions of Red Hat JBoss Operations Network are affected by CVE-2012-0052?
CVE-2012-0052 affects multiple versions of Red Hat JBoss Operations Network including versions from 2.0.0 to 2.4.1.
What impact does CVE-2012-0052 have on my system?
If exploited, CVE-2012-0052 allows an attacker to impersonate a registered JON agent, potentially leading to unauthorized control and data access.
Is there a workaround for CVE-2012-0052?
There are no documented workarounds for CVE-2012-0052, and users are advised to upgrade to a secure version.

collector/redhat-bugzilla
alias/CVE-2012-0052
agent/weakness
agent/author
agent/severity
agent/type
agent/event
agent/description
agent/last-modified-date
agent/softwarecombine
agent/first-publish-date
agent/tags
agent/references
collector/nvd-index
agent/software-canonical-lookup-request
vendor/redhat
canonical/red hat jboss operations network
version/red hat jboss operations network/2.4.1
version/red hat jboss operations network/2.0.0
version/red hat jboss operations network/2.0.1
version/red hat jboss operations network/2.1.0
version/red hat jboss operations network/2.2
version/red hat jboss operations network/2.3
version/red hat jboss operations network/2.3.1
version/red hat jboss operations network/2.4
version/red hat jboss operations network/3.0

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.