Vulnerabilities > CVE-2016-7041 - Unspecified vulnerability in Redhat Jboss Brms and Jboss Drools

CVSS 6.5 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

network

low complexity

redhat

NVD

Published: 2018-09-10

Updated: 2024-11-21

Summary

Drools Workbench contains a path traversal vulnerability. The vulnerability allows a remote, authenticated attacker to bypass the directory restrictions and retrieve arbitrary files from the affected host.

Vulnerable Configurations

Part	Description	Count
Application	Redhat Redhat Jboss Drools - Redhat Jboss Brms 6.3	2

Redhat

advisories

rhsa
id RHSA-2016:2822
rhsa
id RHSA-2016:2823
rhsa
id RHSA-2016:2937
rhsa
id RHSA-2016:2938

References

http://rhn.redhat.com/errata/RHSA-2016-2822.html
http://rhn.redhat.com/errata/RHSA-2016-2822.html
http://rhn.redhat.com/errata/RHSA-2016-2823.html
http://rhn.redhat.com/errata/RHSA-2016-2823.html
http://rhn.redhat.com/errata/RHSA-2016-2937.html
http://rhn.redhat.com/errata/RHSA-2016-2937.html
http://rhn.redhat.com/errata/RHSA-2016-2938.html
http://rhn.redhat.com/errata/RHSA-2016-2938.html
http://www.securityfocus.com/bid/94566
http://www.securityfocus.com/bid/94566
http://www.securitytracker.com/id/1037406
http://www.securitytracker.com/id/1037406
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-7041
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-7041