CVE-2010-1454

EPSS 0.55% · P68 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2010-1454

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

com.springsource.tcserver.serviceability.rmi.JmxSocketListener in VMware SpringSource tc Server Runtime 6.0.19 and 6.0.20 before 6.0.20.D, and 6.0.25.A before 6.0.25.A-SR01, does not properly enforce the requirement for an encrypted (aka s2enc) password, which allows remote attackers to obtain JMX interface access via a blank password.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

VMware SpringSource tc Server JMX接口绕过认证漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

SpringSource tc Server是一款轻型的应用服务器。 VMware SpringSource tc Server Runtime的com.springsource.tcserver.serviceability.rmi.JmxSocketListener没有强制要求对(即s2enc)密码进行加密，远程攻击者可以通过空密码获取JMX接口的访问权限。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2010-1454

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2010-1454

请登录查看更多情报信息。

http://secunia.com/advisories/39778third-party-advisoryx_refsource_SECUNIA
http://www.securityfocus.com/bid/40205vdb-entryx_refsource_BID
https://exchange.xforce.ibmcloud.com/vulnerabilities/58684vdb-entryx_refsource_XF
http://www.securityfocus.com/archive/1/511307/100/0/threadedmailing-listx_refsource_BUGTRAQ
https://nvd.nist.gov/vuln/detail/CVE-2010-1454

Same Patch Batch · n/a · 2010-05-19 · 20 CVEs total

CVE-2010-1980		Joomla!组件Joomla Flickr 'controller'参数本地文件包含漏洞
CVE-2010-1985		Six Apart Movable Type管理用户接口多个跨站脚本攻击漏洞
CVE-2010-1630		phpBB 'posting.php'未明漏洞
CVE-2010-1629		Phorum跨站脚本攻击漏洞
CVE-2010-1628		Artifex Ghostscript无限递归调用远程代码执行漏洞
CVE-2010-1627		phpBB 'feed.php'错误权限检查漏洞
CVE-2010-1984		Drupal Taxonomy Breadcrumb模块跨站脚本攻击漏洞
CVE-2010-1983		Redcomponent redTWITTER目录遍历漏洞
CVE-2010-1982		Joomlart JA Voice目录遍历漏洞
CVE-2010-1981		Fabrikar Fabrik目录遍历漏洞
CVE-2010-1169		PostgreSQL PL/perl存储过程安全限制绕过漏洞
CVE-2010-1979		Affiliate Datafeeds (com_datafeeds)目录遍历漏洞
CVE-2010-1978		FreePHPBlogSoftware 'default_theme.php'远程文件包含漏洞
CVE-2010-1977		Gohigheris J!WHMCS Integrator目录遍历漏洞
CVE-2010-1976		Drupal Taxonomy Breadcrumb模块跨站脚本攻击漏洞
CVE-2010-1975		PostgreSQL RESET ALL操作过程访问控制漏洞
CVE-2010-1447		PostgreSQL PL/perl程序访问限制绕过漏洞
CVE-2010-1321		MIT Kerberos GSS-API校验和空指针引用拒绝服务漏洞
CVE-2010-1170		PostgreSQL PL/tcl存储过程绕过安全限制漏洞

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2010-1454

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2010-1454

I. Basic Information for CVE-2010-1454

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2010-1454

III. Intelligence Information for CVE-2010-1454

Same Patch Batch · n/a · 2010-05-19 · 20 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2010-1454

Leave a comment