Attacker Value
Unknown
CVE-2013-2165
Attacker Value
Unknown
(0 users assessed)
Exploitability
Unknown
(0 users assessed)User Interaction
Unknown
Privileges Required
Unknown
Attack Vector
Unknown
MITRE ATT&CK
Log in to add MITRE ATT&CK tag
Add MITRE ATT&CK tactics and techniques that apply to this CVE.
Description
ResourceBuilderImpl.java in the RichFaces 3.x through 5.x implementation in Red Hat JBoss Web Framework Kit before 2.3.0, Red Hat JBoss Web Platform through 5.2.0, Red Hat JBoss Enterprise Application Platform through 4.3.0 CP10 and 5.x through 5.2.0, Red Hat JBoss BRMS through 5.3.1, Red Hat JBoss SOA Platform through 4.3.0 CP05 and 5.x through 5.3.1, Red Hat JBoss Portal through 4.3 CP07 and 5.x through 5.2.2, and Red Hat JBoss Operations Network through 2.4.2 and 3.x through 3.1.2 does not restrict the classes for which deserialization methods can be called, which allows remote attackers to execute arbitrary code via crafted serialized data.
Add Assessment
No one has assessed this topic. Be the first to add your voice to the community.
CVSS V3 Severity and Metrics
Data provided by the National Vulnerability Database (NVD)
Base Score:
None
Impact Score:
Unknown
Exploitability Score:
Unknown
Attack Vector (AV):
Unknown
Attack Complexity (AC):
Unknown
Privileges Required (PR):
Unknown
User Interaction (UI):
Unknown
Scope (S):
Unknown
Confidentiality (C):
Unknown
Integrity (I):
Unknown
Availability (A):
Unknown
General Information
Vendors
- redhat
Products
- jboss enterprise application platform 4.3.0,
- jboss enterprise application platform 5.0.0,
- jboss enterprise application platform 5.0.1,
- jboss enterprise application platform 5.1.0,
- jboss enterprise application platform 5.1.1,
- jboss enterprise application platform 5.1.2,
- jboss enterprise application platform 5.2.0,
- jboss enterprise brms platform 5.0.0,
- jboss enterprise brms platform 5.0.1,
- jboss enterprise brms platform 5.0.2,
- jboss enterprise brms platform 5.1.0,
- jboss enterprise brms platform 5.2.0,
- jboss enterprise brms platform 5.3.0,
- jboss enterprise brms platform 5.3.1,
- jboss enterprise portal platform 4.3.0,
- jboss enterprise portal platform 5.0.0,
- jboss enterprise portal platform 5.0.1,
- jboss enterprise portal platform 5.1.0,
- jboss enterprise portal platform 5.1.1,
- jboss enterprise portal platform 5.2.0,
- jboss enterprise portal platform 5.2.1,
- jboss enterprise portal platform 5.2.2,
- jboss enterprise soa platform 4.2.0,
- jboss enterprise soa platform 4.3.0,
- jboss enterprise soa platform 5.0.0,
- jboss enterprise soa platform 5.0.1,
- jboss enterprise soa platform 5.0.2,
- jboss enterprise soa platform 5.1.0,
- jboss enterprise soa platform 5.1.1,
- jboss enterprise soa platform 5.2.0,
- jboss enterprise soa platform 5.3.0,
- jboss enterprise soa platform 5.3.1,
- jboss enterprise web platform 5.1.0,
- jboss enterprise web platform 5.1.1,
- jboss enterprise web platform 5.1.2,
- jboss enterprise web platform 5.2.0,
- jboss operations network 1.0.0,
- jboss operations network 2.0.0,
- jboss operations network 2.0.1,
- jboss operations network 2.1.0,
- jboss operations network 2.2,
- jboss operations network 2.3,
- jboss operations network 2.3.1,
- jboss operations network 2.4,
- jboss operations network 2.4.1,
- jboss operations network 2.4.2,
- jboss operations network 3.0,
- jboss operations network 3.0.1,
- jboss operations network 3.1,
- jboss operations network 3.1.1,
- jboss operations network 3.1.2,
- jboss web framework kit,
- jboss web framework kit 1.0.0,
- jboss web framework kit 1.1.0,
- jboss web framework kit 1.2.0,
- jboss web framework kit 2.0.0,
- jboss web framework kit 2.1.0,
- richfaces 3.1.0,
- richfaces 3.1.1,
- richfaces 3.1.2,
- richfaces 3.1.3,
- richfaces 3.1.4,
- richfaces 3.1.5,
- richfaces 3.1.6,
- richfaces 3.2.0,
- richfaces 3.2.1,
- richfaces 3.2.2,
- richfaces 3.3.0,
- richfaces 3.3.1,
- richfaces 3.3.2,
- richfaces 3.3.3,
- richfaces 4.0.0,
- richfaces 4.1.0,
- richfaces 4.2.0,
- richfaces 4.2.1,
- richfaces 4.2.2,
- richfaces 4.2.3,
- richfaces 4.3.0,
- richfaces 4.3.1,
- richfaces 4.5.0,
- richfaces 5.0.0
References
Advisory
Miscellaneous
