Lucene search

BRMS Security Vulnerabilities

cve

CVE-2012-5626

EJB method in Red Hat JBoss BRMS 5; Red Hat JBoss Enterprise Application Platform 5; Red Hat JBoss Operations Network 3.1; Red Hat JBoss Portal 4 and 5; Red Hat JBoss SOA Platform 4.2, 4.3, and 5; in Red Hat JBoss Enterprise Web Server 1 ignores roles specified using the @RunAs...

7.5CVSS

7.6AI Score

0.001EPSS

2020-01-23 07:15 PM

cve

CVE-2010-3857

JBoss BRMS before 5.1.0 has a XSS vulnerability via asset=UUID...

6.1CVSS

6.5AI Score

0.001EPSS

2019-11-12 11:15 PM

cve

CVE-2016-8608

JBoss BRMS 6 and BPM Suite 6 are vulnerable to a stored XSS via business process editor. The flaw is due to an incomplete fix for CVE-2016-5398. Remote, authenticated attackers that have privileges to create business processes can store scripts in them, which are not properly sanitized before...

5.4CVSS

5.4AI Score

0.001EPSS

2018-08-01 02:29 PM