CVE-2014-0085
low
CVSS v3
—
CVSS v2
2.1
VIR risk
2.1
Description
Exposure of Sensitive Information to an Unauthorized Actor in JBoss Fuse
Predictions
Exploit likelihood
20%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
No vendor mitigations ingested yet for this CVE. The mitigation-content worker queues fetches as references arrive — check back in a few minutes, or see the references list below.
Package impact
| Ecosystem | Package | Vulnerable | Fixed |
|---|---|---|---|
| Maven | org.jboss.fuse:jboss-fuse | <6.1.0 | 6.1.0 |
Application impact
| Vendor | Product | Versions | Fixed |
|---|---|---|---|
| redhat | jboss_a-mq | 6.0.0 | |
| redhat | jboss_fuse | 6.0.0 | |
References
CWEs
CWE-255
Verify integrity in audit chain (admin only). AS-IS.