Local User Vulnerability in Oracle GlassFish Product By Oracle
CVE-2011-3564

Currently unrated

Key Information:

Vendor: Oracle
Status: Sun Glassfish Enterprise Server
Vendor: CVE Published:; 18 January 2012

What is CVE-2011-3564?

An unspecified vulnerability in Oracle GlassFish Enterprise Server 2.1.1 allows local users to compromise confidentiality through unknown vectors related to the Administration interface. This vulnerability can potentially expose sensitive data to unauthorized users, posing risks to the integrity and privacy of the application. It underscores the importance of securing administrative access and monitoring user permissions within the administration console.

References

http://www.oracle.com/technetwork/topics/security/cpujan2...

x_refsource_CONFIRM

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Jan 18, 2012