Medium
CVSS 4.4
Overview
The agent in Thermostat before 1.0.6, when using unspecified configurations, allows local users to obtain the JMX management URLs of all local Java virtual machines and gain privileges via unknown vectors.
CVE-2014-8120
The agent in Thermostat before 1.0.6, when using unspecified configurations, all...
Risk analysis
This vulnerability is rated 🟡 MEDIUM.
- CVSS: 4.4 (MEDIUM)
- Detected tags: none (tag impact: LOW)
Recommended actions:
- Prioritize remediation based on business criticality and exposure.
- Limit exposure and increase monitoring until fixed.