CVE-2010-1429

N/A Unknown

Published: April 28, 2010 Modified: April 29, 2026

Description

Red Hat JBoss Enterprise Application Platform (aka JBoss EAP or JBEAP) 4.2 before 4.2.0.CP09 and 4.3 before 4.3.0.CP08 allows remote attackers to obtain sensitive information about "deployed web contexts" via a request to the status servlet, as demonstrated by a full=true query string. NOTE: this issue exists because of a CVE-2008-3273 regression.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://marc.info/?l=bugtraq&m=132698550418872&w=2

Source: secalert@redhat.com

http://secunia.com/advisories/39563

Source: secalert@redhat.com

Vendor Advisory

http://securitytracker.com/id?1023918

Source: secalert@redhat.com

http://www.securityfocus.com/bid/39710

Source: secalert@redhat.com

http://www.vupen.com/english/advisories/2010/0992

Source: secalert@redhat.com

Vendor Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=585900

Source: secalert@redhat.com

https://exchange.xforce.ibmcloud.com/vulnerabilities/58149

Source: secalert@redhat.com

https://rhn.redhat.com/errata/RHSA-2010-0376.html

Source: secalert@redhat.com

Vendor Advisory

https://rhn.redhat.com/errata/RHSA-2010-0377.html

Source: secalert@redhat.com

Vendor Advisory

https://rhn.redhat.com/errata/RHSA-2010-0378.html

Source: secalert@redhat.com

Vendor Advisory

https://rhn.redhat.com/errata/RHSA-2010-0379.html

Source: secalert@redhat.com

Vendor Advisory

https://www.exploit-db.com/exploits/44009/

Source: secalert@redhat.com

http://marc.info/?l=bugtraq&m=132698550418872&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/39563

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://securitytracker.com/id?1023918

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/39710

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2010/0992

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=585900

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/58149

Source: af854a3a-2127-422b-91ae-364da2661108

https://rhn.redhat.com/errata/RHSA-2010-0376.html

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://rhn.redhat.com/errata/RHSA-2010-0377.html

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://rhn.redhat.com/errata/RHSA-2010-0378.html

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://rhn.redhat.com/errata/RHSA-2010-0379.html

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://www.exploit-db.com/exploits/44009/

Source: af854a3a-2127-422b-91ae-364da2661108

24 reference(s) from NVD

Quick Stats

CVSS v3 Score

N/A / 10.0

EPSS (Exploit Probability)

27.4%

96th percentile

Exploitation Status

Not in CISA KEV

Weaknesses (CWE)

CWE-264

Affected Vendors

redhat

Related CVEs

CVE-2026-4827 N/A

CVE-2026-45218 7.7

CVE-2026-45215 5.3

CVE-2026-45214 8.5

CVE-2026-45213 7.6