SecuritySpace - CVE-2018-14324

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2018-14324

Description: The demo feature in Oracle GlassFish Open Source Edition 5.0 has TCP port 7676 open by default with a password of admin for the admin account. This allows remote attackers to obtain potentially sensitive information, perform database operations, or manipulate the demo via a JMX RMI session, aka a "jmx_rmi remote monitoring and control problem." NOTE: this is not an Oracle supported product.

Test IDs: 1.3.6.1.4.1.25623.1.0.813576

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2018-14324
http://www.securitytracker.com/id/1041292

CVE ID:	CVE-2018-14324
Description:	The demo feature in Oracle GlassFish Open Source Edition 5.0 has TCP port 7676 open by default with a password of admin for the admin account. This allows remote attackers to obtain potentially sensitive information, perform database operations, or manipulate the demo via a JMX RMI session, aka a "jmx_rmi remote monitoring and control problem." NOTE: this is not an Oracle supported product.
Test IDs:	1.3.6.1.4.1.25623.1.0.813576
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2018-14324 http://www.securitytracker.com/id/1041292