CVE-2014-0059 - Vulnerability Details

JBoss SX and PicketBox, as used in Red Hat JBoss Enterprise Application Platform (EAP) before 6.2.3, use world-readable permissions on audit.log, which allows local users to obtain sensitive information by reading this file.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

AV:L/AC:L/Au:N/C:P/I:N/A:N

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Redhat	Jboss Bpms Jboss Brms Jboss Data Grid Jboss Data Virtualization Jboss Enterprise Application Platform Jboss Enterprise Portal Platform Jboss Operations Network

Configuration 1 [-]

cpe:2.3:a:redhat:jboss_enterprise_application_platform:*:*:*:*:*:*:*:*

Package	CPE	Advisory	Released Date
Red Hat JBoss BPMS 6.0
eap	cpe:/a:redhat:jboss_bpms:6.0	RHSA-2015:0851	2015-04-16T00:00:00Z
Red Hat JBoss BRMS 6.0
eap	cpe:/a:redhat:jboss_brms:6.0	RHSA-2015:0850	2015-04-16T00:00:00Z
Red Hat JBoss Data Grid 6.3
eap	cpe:/a:redhat:jboss_data_grid:6.3.0	RHSA-2014:0895	2014-07-16T00:00:00Z
Red Hat JBoss Data Virtualization 6.1
	cpe:/a:redhat:jboss_data_virtualization:6.1	RHSA-2015:0675	2015-03-11T00:00:00Z
Red Hat JBoss Enterprise Application Platform 6.2
	cpe:/a:redhat:jboss_enterprise_application_platform:6.2.3	RHSA-2014:0565	2014-05-27T00:00:00Z
Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5
glassfish-jsf12-eap6-0:1.2_15-7.b01_redhat_11.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
glassfish-jsf-eap6-0:2.1.28-2.redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
hibernate4-eap6-0:4.2.7-8.SP4_redhat_1.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
hornetq-0:2.3.14.1-1.Final_redhat_1.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
ironjacamar-eap6-0:1.0.23.1-1.Final_redhat_1.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-as-appclient-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jbossas-appclient-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jbossas-bundles-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-as-cli-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-as-client-all-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-as-clustering-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-as-cmp-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-as-configadmin-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-as-connector-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-as-controller-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-as-controller-client-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jbossas-core-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-as-core-security-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-as-deployment-repository-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-as-deployment-scanner-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jbossas-domain-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-as-domain-http-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-as-domain-management-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-as-ee-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-as-ee-deployment-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-as-ejb3-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-as-embedded-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-as-host-controller-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-as-jacorb-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jbossas-javadocs-0:7.3.3-3.Final_redhat_3.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-as-jaxr-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-as-jaxrs-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-as-jdr-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-as-jmx-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-as-jpa-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-as-jsf-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-as-jsr77-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-as-logging-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-as-mail-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-as-management-client-content-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-as-messaging-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-as-modcluster-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jbossas-modules-eap-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-as-naming-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-as-network-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-as-osgi-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-as-osgi-configadmin-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-as-osgi-service-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-as-platform-mbean-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-as-pojo-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-as-process-controller-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jbossas-product-eap-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-as-protocol-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-as-remoting-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-as-sar-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-as-security-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-as-server-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jbossas-standalone-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-as-system-jmx-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-as-threads-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-as-transactions-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-as-version-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-as-web-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-as-webservices-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jbossas-welcome-content-eap-0:7.3.3-4.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-as-weld-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-as-xts-0:7.3.3-3.Final_redhat_3.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-jsf-api_2.1_spec-0:2.1.28-3.Final_redhat_1.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-jstl-api_1.2_spec-0:1.0.5-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-security-negotiation-0:2.2.8-1.Final_redhat_1.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
jboss-weld-1.1-api-0:1.1-9.Final_redhat_5.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
log4j-jboss-logmanager-0:1.1.0-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
picketbox-0:4.0.19-6.SP6_redhat_1.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
picketlink-federation-0:2.1.9-4.SP3_redhat_1.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
resteasy-0:2.3.7.1-1.Final_redhat_1.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
weld-cdi-1.0-api-0:1.0-10.SP4_redhat_4.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
weld-core-0:1.1.17-3.SP2_redhat_1.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2014:0564	2014-05-28T00:00:00Z
Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6
glassfish-jsf12-eap6-0:1.2_15-7.b01_redhat_11.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
glassfish-jsf-eap6-0:2.1.28-2.redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
hibernate4-eap6-0:4.2.7-8.SP4_redhat_1.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
hornetq-0:2.3.14.1-1.Final_redhat_1.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
ironjacamar-eap6-0:1.0.23.1-1.Final_redhat_1.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-as-appclient-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jbossas-appclient-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jbossas-bundles-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-as-cli-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-as-client-all-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-as-clustering-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-as-cmp-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-as-configadmin-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-as-connector-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-as-controller-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-as-controller-client-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jbossas-core-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-as-core-security-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-as-deployment-repository-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-as-deployment-scanner-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jbossas-domain-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-as-domain-http-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-as-domain-management-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-as-ee-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-as-ee-deployment-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-as-ejb3-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-as-embedded-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-as-host-controller-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-as-jacorb-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jbossas-javadocs-0:7.3.3-3.Final_redhat_3.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-as-jaxr-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-as-jaxrs-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-as-jdr-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-as-jmx-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-as-jpa-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-as-jsf-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-as-jsr77-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-as-logging-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-as-mail-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-as-management-client-content-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-as-messaging-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-as-modcluster-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jbossas-modules-eap-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-as-naming-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-as-network-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-as-osgi-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-as-osgi-configadmin-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-as-osgi-service-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-as-platform-mbean-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-as-pojo-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-as-process-controller-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jbossas-product-eap-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-as-protocol-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-as-remoting-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-as-sar-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-as-security-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-as-server-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jbossas-standalone-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-as-system-jmx-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-as-threads-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-as-transactions-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-as-version-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-as-web-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-as-webservices-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jbossas-welcome-content-eap-0:7.3.3-4.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-as-weld-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-as-xts-0:7.3.3-3.Final_redhat_3.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-jsf-api_2.1_spec-0:2.1.28-3.Final_redhat_1.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-jstl-api_1.2_spec-0:1.0.5-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-security-negotiation-0:2.2.8-1.Final_redhat_1.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
jboss-weld-1.1-api-0:1.1-9.Final_redhat_5.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
log4j-jboss-logmanager-0:1.1.0-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
picketbox-0:4.0.19-6.SP6_redhat_1.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
picketlink-federation-0:2.1.9-4.SP3_redhat_1.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
resteasy-0:2.3.7.1-1.Final_redhat_1.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
weld-cdi-1.0-api-0:1.0-10.SP4_redhat_4.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
weld-core-0:1.1.17-3.SP2_redhat_1.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2014:0563	2014-05-27T00:00:00Z
Red Hat JBoss Operations Network 3.3
eap	cpe:/a:redhat:jboss_operations_network:3.3	RHSA-2014:1904	2014-11-25T00:00:00Z
Red Hat JBoss Portal 6.2
eap	cpe:/a:redhat:jboss_enterprise_portal_platform:6.2	RHSA-2015:1009	2015-05-14T00:00:00Z

References

Link	Providers
http://rhn.redhat.com/errata/RHSA-2014-0563.html
http://rhn.redhat.com/errata/RHSA-2014-0564.html
http://rhn.redhat.com/errata/RHSA-2014-0565.html
http://rhn.redhat.com/errata/RHSA-2015-0675.html
http://rhn.redhat.com/errata/RHSA-2015-0850.html
http://rhn.redhat.com/errata/RHSA-2015-0851.html
https://nvd.nist.gov/vuln/detail/CVE-2014-0059
https://www.cve.org/CVERecord?id=CVE-2014-0059

History

No history.

MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2014-11-17T22:00:00

Updated: 2024-08-06T09:05:37.836Z

Reserved: 2013-12-03T00:00:00

Link: CVE-2014-0059

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2014-11-17T22:59:02.610

Modified: 2025-04-12T10:46:40.837

Link: CVE-2014-0059

Redhat

Severity : Low

Publid Date: 2014-05-27T00:00:00Z

Links: CVE-2014-0059 - Bugzilla

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2014-05-27T00:00:00", "descriptions": [{"lang": "en", "value": "JBoss SX and PicketBox, as used in Red Hat JBoss Enterprise Application Platform (EAP) before 6.2.3, use world-readable permissions on audit.log, which allows local users to obtain sensitive information by reading this file."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2016-09-29T16:57:01", "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat"}, "references": [{"name": "RHSA-2014:0565", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://rhn.redhat.com/errata/RHSA-2014-0565.html"}, {"name": "RHSA-2015:0675", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://rhn.redhat.com/errata/RHSA-2015-0675.html"}, {"name": "RHSA-2015:0850", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://rhn.redhat.com/errata/RHSA-2015-0850.html"}, {"name": "RHSA-2014:0563", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://rhn.redhat.com/errata/RHSA-2014-0563.html"}, {"name": "RHSA-2015:0851", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://rhn.redhat.com/errata/RHSA-2015-0851.html"}, {"name": "RHSA-2014:0564", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://rhn.redhat.com/errata/RHSA-2014-0564.html"}]}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T09:05:37.836Z"}, "title": "CVE Program Container", "references": [{"name": "RHSA-2014:0565", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://rhn.redhat.com/errata/RHSA-2014-0565.html"}, {"name": "RHSA-2015:0675", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://rhn.redhat.com/errata/RHSA-2015-0675.html"}, {"name": "RHSA-2015:0850", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://rhn.redhat.com/errata/RHSA-2015-0850.html"}, {"name": "RHSA-2014:0563", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://rhn.redhat.com/errata/RHSA-2014-0563.html"}, {"name": "RHSA-2015:0851", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://rhn.redhat.com/errata/RHSA-2015-0851.html"}, {"name": "RHSA-2014:0564", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://rhn.redhat.com/errata/RHSA-2014-0564.html"}]}]}, "cveMetadata": {"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "assignerShortName": "redhat", "cveId": "CVE-2014-0059", "datePublished": "2014-11-17T22:00:00", "dateReserved": "2013-12-03T00:00:00", "dateUpdated": "2024-08-06T09:05:37.836Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:redhat:jboss_enterprise_application_platform:*:*:*:*:*:*:*:*", "matchCriteriaId": "A1E0ECA3-CBBA-4D63-9D73-77DCD8F1F480", "versionEndIncluding": "6.2.2", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "JBoss SX and PicketBox, as used in Red Hat JBoss Enterprise Application Platform (EAP) before 6.2.3, use world-readable permissions on audit.log, which allows local users to obtain sensitive information by reading this file."}, {"lang": "es", "value": "JBoss SX y PicketBox, como se usan en Red Hat JBoss Enterprise Application Platform (EAP) en versiones anteriores a 6.2.3, utilizan permisos de lectura universal en audit.log, lo que permite a usuarios locales obtener informaci\u00f3n sensible leyendo este archivo."}], "id": "CVE-2014-0059", "lastModified": "2025-04-12T10:46:40.837", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "LOW", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2014-11-17T22:59:02.610", "references": [{"source": "secalert@redhat.com", "tags": ["Vendor Advisory"], "url": "http://rhn.redhat.com/errata/RHSA-2014-0563.html"}, {"source": "secalert@redhat.com", "tags": ["Vendor Advisory"], "url": "http://rhn.redhat.com/errata/RHSA-2014-0564.html"}, {"source": "secalert@redhat.com", "tags": ["Vendor Advisory"], "url": "http://rhn.redhat.com/errata/RHSA-2014-0565.html"}, {"source": "secalert@redhat.com", "url": "http://rhn.redhat.com/errata/RHSA-2015-0675.html"}, {"source": "secalert@redhat.com", "url": "http://rhn.redhat.com/errata/RHSA-2015-0850.html"}, {"source": "secalert@redhat.com", "url": "http://rhn.redhat.com/errata/RHSA-2015-0851.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://rhn.redhat.com/errata/RHSA-2014-0563.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://rhn.redhat.com/errata/RHSA-2014-0564.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://rhn.redhat.com/errata/RHSA-2014-0565.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://rhn.redhat.com/errata/RHSA-2015-0675.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://rhn.redhat.com/errata/RHSA-2015-0850.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://rhn.redhat.com/errata/RHSA-2015-0851.html"}], "sourceIdentifier": "secalert@redhat.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-200"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"affected_release": [{"advisory": "RHSA-2015:0851", "cpe": "cpe:/a:redhat:jboss_bpms:6.0", "package": "eap", "product_name": "Red Hat JBoss BPMS 6.0", "release_date": "2015-04-16T00:00:00Z"}, {"advisory": "RHSA-2015:0850", "cpe": "cpe:/a:redhat:jboss_brms:6.0", "package": "eap", "product_name": "Red Hat JBoss BRMS 6.0", "release_date": "2015-04-16T00:00:00Z"}, {"advisory": "RHSA-2014:0895", "cpe": "cpe:/a:redhat:jboss_data_grid:6.3.0", "package": "eap", "product_name": "Red Hat JBoss Data Grid 6.3", "release_date": "2014-07-16T00:00:00Z"}, {"advisory": "RHSA-2015:0675", "cpe": "cpe:/a:redhat:jboss_data_virtualization:6.1", "product_name": "Red Hat JBoss Data Virtualization 6.1", "release_date": "2015-03-11T00:00:00Z"}, {"advisory": "RHSA-2014:0565", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6.2.3", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "glassfish-jsf12-eap6-0:1.2_15-7.b01_redhat_11.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "glassfish-jsf-eap6-0:2.1.28-2.redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "hibernate4-eap6-0:4.2.7-8.SP4_redhat_1.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "hornetq-0:2.3.14.1-1.Final_redhat_1.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "ironjacamar-eap6-0:1.0.23.1-1.Final_redhat_1.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-appclient-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jbossas-appclient-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jbossas-bundles-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-cli-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-client-all-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-clustering-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-cmp-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-configadmin-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-connector-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-controller-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-controller-client-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jbossas-core-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-core-security-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-deployment-repository-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-deployment-scanner-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jbossas-domain-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-domain-http-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-domain-management-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-ee-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-ee-deployment-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-ejb3-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-embedded-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-host-controller-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-jacorb-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jbossas-javadocs-0:7.3.3-3.Final_redhat_3.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-jaxr-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-jaxrs-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-jdr-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-jmx-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-jpa-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-jsf-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-jsr77-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-logging-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-mail-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-management-client-content-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-messaging-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-modcluster-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jbossas-modules-eap-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-naming-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-network-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-osgi-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-osgi-configadmin-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-osgi-service-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-platform-mbean-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-pojo-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-process-controller-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jbossas-product-eap-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-protocol-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-remoting-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-sar-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-security-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-server-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jbossas-standalone-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-system-jmx-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-threads-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-transactions-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-version-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-web-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-webservices-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jbossas-welcome-content-eap-0:7.3.3-4.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-weld-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-as-xts-0:7.3.3-3.Final_redhat_3.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-jsf-api_2.1_spec-0:2.1.28-3.Final_redhat_1.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-jstl-api_1.2_spec-0:1.0.5-2.Final_redhat_2.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-security-negotiation-0:2.2.8-1.Final_redhat_1.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "jboss-weld-1.1-api-0:1.1-9.Final_redhat_5.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "log4j-jboss-logmanager-0:1.1.0-2.Final_redhat_2.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "picketbox-0:4.0.19-6.SP6_redhat_1.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "picketlink-federation-0:2.1.9-4.SP3_redhat_1.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "resteasy-0:2.3.7.1-1.Final_redhat_1.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "weld-cdi-1.0-api-0:1.0-10.SP4_redhat_4.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0564", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el5", "package": "weld-core-0:1.1.17-3.SP2_redhat_1.1.ep6.el5", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 5", "release_date": "2014-05-28T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "glassfish-jsf12-eap6-0:1.2_15-7.b01_redhat_11.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "glassfish-jsf-eap6-0:2.1.28-2.redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "hibernate4-eap6-0:4.2.7-8.SP4_redhat_1.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "hornetq-0:2.3.14.1-1.Final_redhat_1.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "ironjacamar-eap6-0:1.0.23.1-1.Final_redhat_1.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-appclient-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jbossas-appclient-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jbossas-bundles-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-cli-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-client-all-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-clustering-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-cmp-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-configadmin-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-connector-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-controller-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-controller-client-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jbossas-core-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-core-security-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-deployment-repository-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-deployment-scanner-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jbossas-domain-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-domain-http-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-domain-management-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-ee-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-ee-deployment-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-ejb3-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-embedded-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-host-controller-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-jacorb-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jbossas-javadocs-0:7.3.3-3.Final_redhat_3.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-jaxr-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-jaxrs-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-jdr-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-jmx-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-jpa-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-jsf-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-jsr77-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-logging-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-mail-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-management-client-content-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-messaging-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-modcluster-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jbossas-modules-eap-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-naming-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-network-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-osgi-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-osgi-configadmin-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-osgi-service-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-platform-mbean-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-pojo-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-process-controller-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jbossas-product-eap-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-protocol-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-remoting-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-sar-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-security-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-server-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jbossas-standalone-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-system-jmx-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-threads-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-transactions-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-version-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-web-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-webservices-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jbossas-welcome-content-eap-0:7.3.3-4.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-weld-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-as-xts-0:7.3.3-3.Final_redhat_3.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-jsf-api_2.1_spec-0:2.1.28-3.Final_redhat_1.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-jstl-api_1.2_spec-0:1.0.5-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-security-negotiation-0:2.2.8-1.Final_redhat_1.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "jboss-weld-1.1-api-0:1.1-9.Final_redhat_5.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "log4j-jboss-logmanager-0:1.1.0-2.Final_redhat_2.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "picketbox-0:4.0.19-6.SP6_redhat_1.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "picketlink-federation-0:2.1.9-4.SP3_redhat_1.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "resteasy-0:2.3.7.1-1.Final_redhat_1.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "weld-cdi-1.0-api-0:1.0-10.SP4_redhat_4.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:0563", "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:6::el6", "package": "weld-core-0:1.1.17-3.SP2_redhat_1.1.ep6.el6", "product_name": "Red Hat JBoss Enterprise Application Platform 6.2 for RHEL 6", "release_date": "2014-05-27T00:00:00Z"}, {"advisory": "RHSA-2014:1904", "cpe": "cpe:/a:redhat:jboss_operations_network:3.3", "package": "eap", "product_name": "Red Hat JBoss Operations Network 3.3", "release_date": "2014-11-25T00:00:00Z"}, {"advisory": "RHSA-2015:1009", "cpe": "cpe:/a:redhat:jboss_enterprise_portal_platform:6.2", "package": "eap", "product_name": "Red Hat JBoss Portal 6.2", "release_date": "2015-05-14T00:00:00Z"}], "bugzilla": {"description": "JBossSX/PicketBox: World readable audit.log file", "id": "1063642", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1063642"}, "csaw": false, "cvss": {"cvss_base_score": "2.1", "cvss_scoring_vector": "AV:L/AC:L/Au:N/C:P/I:N/A:N", "status": "verified"}, "cwe": "CWE-532", "details": ["JBoss SX and PicketBox, as used in Red Hat JBoss Enterprise Application Platform (EAP) before 6.2.3, use world-readable permissions on audit.log, which allows local users to obtain sensitive information by reading this file.", "It was found that the security auditing functionality provided by PicketBox and JBossSX, both security frameworks for Java applications, used a world-readable audit.log file to record sensitive information. A local user could possibly use this flaw to gain access to the sensitive information in the audit.log file."], "name": "CVE-2014-0059", "package_state": [{"cpe": "cpe:/a:redhat:jboss_data_virtualization:6", "fix_state": "Affected", "package_name": "eap", "product_name": "Red Hat JBoss Data Virtualization 6"}, {"cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1", "fix_state": "Not affected", "package_name": "others", "product_name": "Red Hat JBoss Enterprise Web Server 1"}, {"cpe": "cpe:/a:redhat:jboss_fuse_service_works:6", "fix_state": "Affected", "package_name": "eap", "product_name": "Red Hat JBoss Fuse Service Works 6"}], "public_date": "2014-05-27T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2014-0059\nhttps://nvd.nist.gov/vuln/detail/CVE-2014-0059"], "threat_severity": "Low"}

Metrics

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

Affected Vendors & Products

Metrics

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object