CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Veracode•added 2020/04/10 12:59 a.m.•71 views

Remote Code Execution (RCE)

JBoss Enterprise Application Platform is vulnerable to remtoe code execution RCE. Due to an incomplete fix for CVE-2011-1484, JBoss Seam 2 did not block access to all malicious JBoss Expression Language EL constructs in page exception handling, allowing arbitrary Java methods to be executed. A...

6.8CVSS3.4AI score0.01215EPSS

Exploits0References13Affected Software50

Tenable Nessus•added 2013/01/24 12:0 a.m.•24 views

RHEL 4 / 5 : jboss-seam2 (RHSA-2011:0950)

Updated jboss-seam2 packages that fix one security issue are now available for JBoss Enterprise Application Platform 4.3 for Red Hat Enterprise Linux 4 and 5. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CVSS...

6.8CVSS5.8AI score0.01215EPSS

Tenable Nessus•added 2013/01/24 12:0 a.m.•22 views

RHEL 5 : JBoss EAP (RHSA-2011:0948)

Updated JBoss Enterprise Application Platform 5.1.1 packages that fix one security issue and various bugs are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CVSS base...

6.8CVSS5.9AI score0.01215EPSS

Tenable Nessus•added 2013/01/24 12:0 a.m.•28 views

RHEL 4 / 5 : jboss-seam2 (RHSA-2011:0461)

Updated jboss-seam2 packages that fix one security issue are now available for JBoss Enterprise Application Platform 5.1 for Red Hat Enterprise Linux 4 and 5. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CVSS...

6.8CVSS6.1AI score0.01022EPSS

Tenable Nessus•added 2013/01/24 12:0 a.m.•27 views

RHEL 4 / 5 : jboss-seam2 (RHSA-2011:0460)

6.8CVSS6.1AI score0.01022EPSS

RedHat Linux•added 2011/09/05 2:19 a.m.•28 views

Important: Red Hat Security Advisory: JBoss Enterprise Portal Platform 5.1.1 update

JBoss Enterprise Portal Platform 5.1.1, which fixes one security issue and various bugs, is now available from the Red Hat Customer Portal. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CVSS base score, which...

RedHat Linux•added 2011/08/10 6:23 p.m.•5 views

Important: Red Hat Security Advisory: JBoss Communications Platform 5.1.1 update

JBoss Communications Platform 5.1.1, which fixes one security issue and various bugs, is now available from the Red Hat Customer Portal. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CVSS base score, which gives...

CVE•added 2011/07/27 1:0 a.m.•95 views

CVE-2011-1484

CVE-2011-1484 affects JBoss Seam 2 framework (2.2.x and earlier) distributed with Red Hat JBoss Enterprise platforms. The flaw stems from improper restriction of EL statements in FacesMessages during page exception handling, enabling remote code execution via a crafted URL. Red Hat advisories RHS...

6.8CVSS7.3AI score0.01022EPSS

Exploits0References8Affected Software3

RedHat Linux•added 2011/07/18 8:45 p.m.•40 views

Important: Red Hat Security Advisory: jboss-seam security update

An updated jboss-seam.jar file for JBoss Enterprise Application Platform 4.3.0.CP09 that fixes one security issue is now available from the Red Hat Customer Portal. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System...

RedHat Linux•added 2011/07/18 8:45 p.m.•29 views

Important: Red Hat Security Advisory: jboss-seam2 security update

RedHat Linux•added 2011/07/18 8:35 p.m.•2 views

Exploits0References2

JBoss Seam EL interpolation in exception handling

jboss-seam.jar in the JBoss Seam 2 framework 2.2.x and earlier, as distributed in Red Hat JBoss Enterprise SOA Platform 4.3.0.CP05 and 5.1.0; JBoss Enterprise Application Platform aka JBoss EAP or JBEAP 4.3.0, 4.3.0.CP09, and 5.1.1; and JBoss Enterprise Web Platform 5.1.1, does not properly...

6.8CVSS6.2AI score0.01215EPSS

RedHat Linux•added 2011/07/18 8:35 p.m.•36 views

Important: Red Hat Security Advisory: JBoss Enterprise Application Platform 5.1.1 update

JBoss Enterprise Application Platform 5.1.1, which fixes one security issue and various bugs, is now available from the Red Hat Customer Portal. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CVSS base score, whi...

RedHat Linux•added 2011/07/18 8:15 p.m.•1 views

JBoss Seam EL interpolation in exception handling

6.8CVSS6.2AI score0.01215EPSS

RedHat Linux•added 2011/07/18 8:15 p.m.•38 views

Important: Red Hat Security Advisory: JBoss Enterprise Application Platform 5.1.1 update

Updated JBoss Enterprise Application Platform 5.1.1 packages that fix one security issue and various bugs are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CVSS base...

RedHat Linux•added 2011/04/20 7:35 p.m.•34 views

Important: Red Hat Security Advisory: jboss-seam2 security update

RedHat Linux•added 2011/04/20 7:33 p.m.•40 views

Exploits0References2

Important: Red Hat Security Advisory: jboss-seam2 security update