Jolokia Agent 1.3.7 JNDI Injection Vulnerability

Jolokia Agent 1.3.7 JNDI Injection Vulnerability

CVE-2018-1000130 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

A JNDI Injection vulnerability exists in Jolokia agent version 1.3.7 in the proxy mode that allows a remote attacker to run arbitrary Java code on the server.

Learn more about our Cis Benchmark Audit For Server Software.