COOEY // HUBcompliance · community · intelligence

Exposures › CVE-2010-1871

CVE-2010-1871

Severity
high · on CISA KEV actively exploited
Source
CISA-KEV · kev
Published
2021-12-10
Reference
https://nvd.nist.gov/vuln/detail/CVE-2010-1871
⚡ RCE ⌖ exploited in the wild shame 65/100 rceexploited-in-wild

JBoss Seam 2 (jboss-seam2), as used in JBoss Enterprise Application Platform 4.3.0 for Red Hat Linux, allows attackers to perform remote code execution. This vulnerability can only be exploited when the Java Security Manager is not properly configured.

Players implicated

Red Hat · vendorJBoss Seam 2 · product

Description

JBoss Seam 2 (jboss-seam2), as used in JBoss Enterprise Application Platform 4.3.0 for Red Hat Linux, allows attackers to perform remote code execution. This vulnerability can only be exploited when the Java Security Manager is not properly configured.

Affected FedRAMP products 1 in the catalog

ProductProviderStatusMatch
Red Hat OpenShift Service on AWS (ROSA) Red Hat In Process vendor-exact · 0.90