Skip to main content

Mod Cluster

3 CVEs product

Monthly

CVE-2016-4459 HIGH This Week

Stack-based buffer overflow in native/mod_manager/node.c in mod_cluster 1.2.9. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Mod Cluster Enterprise Linux
NVD
CVSS 3.0
7.5
EPSS
1.5%
CVE-2015-0298 MEDIUM This Month

Cross-site scripting (XSS) vulnerability in the manager web interface in mod_cluster before 1.3.2.Alpha1 allows remote attackers to inject arbitrary web script or HTML via a crafted MCMP message. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

XSS Mod Cluster
NVD
CVSS 2.0
4.3
EPSS
0.3%
CVE-2012-1154 Maven MEDIUM PATCH This Month

mod_cluster 1.0.10 before 1.0.10 CP03 and 1.1.x before 1.1.4, as used in JBoss Enterprise Application Platform 5.1.2, when "ROOT" is set to excludedContexts, exposes the root context of the server,. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable.

Privilege Escalation Jboss Enterprise Application Platform Mod Cluster
NVD
CVSS 2.0
4.3
EPSS
0.3%
EPSS 2% CVSS 7.5
HIGH This Week

Stack-based buffer overflow in native/mod_manager/node.c in mod_cluster 1.2.9. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Mod Cluster Enterprise Linux
NVD
EPSS 0% CVSS 4.3
MEDIUM This Month

Cross-site scripting (XSS) vulnerability in the manager web interface in mod_cluster before 1.3.2.Alpha1 allows remote attackers to inject arbitrary web script or HTML via a crafted MCMP message. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

XSS Mod Cluster
NVD
EPSS 0% CVSS 4.3
MEDIUM PATCH This Month

mod_cluster 1.0.10 before 1.0.10 CP03 and 1.1.x before 1.1.4, as used in JBoss Enterprise Application Platform 5.1.2, when "ROOT" is set to excludedContexts, exposes the root context of the server,. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable.

Privilege Escalation Jboss Enterprise Application Platform Mod Cluster
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy