Lucene search
K

21 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.14 views

EUVD-2013-4118

Malware in sbrugna...

6.4CVSS6.1AI score0.02473EPSS
Exploits1References12
EUVD
EUVD
added 2025/10/07 12:30 a.m.16 views

EUVD-2013-4056

Malware in sbrugna...

6.4CVSS6.1AI score0.02441EPSS
Exploits0References12
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-35006

Malicious code in bioql PyPI...

4.9CVSS5.8AI score0.00787EPSS
Exploits0References11
RedHat Linux
RedHat Linux
added 2023/03/01 10:2 p.m.4 views

Undertow: DoS can be achieved as Undertow server waits for the LAST_CHUNK forever for EJB invocations

A flaw was found in Undertow with EJB invocations. This flaw allows an attacker to generate a valid HTTP request and send it to the server on an established connection after removing the LASTCHUNK from the bytes, causing a denial of service...

4.9CVSS6.6AI score0.00787EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2023/03/01 9:58 p.m.6 views

Undertow: DoS can be achieved as Undertow server waits for the LAST_CHUNK forever for EJB invocations

A flaw was found in Undertow with EJB invocations. This flaw allows an attacker to generate a valid HTTP request and send it to the server on an established connection after removing the LASTCHUNK from the bytes, causing a denial of service...

4.9CVSS6.6AI score0.00787EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2023/03/01 9:45 p.m.4 views

Undertow: DoS can be achieved as Undertow server waits for the LAST_CHUNK forever for EJB invocations

A flaw was found in Undertow with EJB invocations. This flaw allows an attacker to generate a valid HTTP request and send it to the server on an established connection after removing the LASTCHUNK from the bytes, causing a denial of service...

4.9CVSS6.6AI score0.00787EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2022/12/06 12:0 a.m.65 views

RHEL 7 : Red Hat JBoss Enterprise Application Platform 7.4.8 Security update (Low) (RHSA-2022:8790)

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2022:8790 advisory. Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime. This release of Red Hat...

4.9CVSS6.3AI score0.00787EPSS
Exploits0References16
RedHat Linux
RedHat Linux
added 2022/12/05 9:10 p.m.23 views

Low: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4.8 security update

A security update is now available for Red Hat JBoss Enterprise Application Platform 7.4. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

4.9CVSS6.4AI score0.00787EPSS
Exploits0References13
RedHat Linux
RedHat Linux
added 2022/12/05 9:9 p.m.5 views

Undertow: DoS can be achieved as Undertow server waits for the LAST_CHUNK forever for EJB invocations

A flaw was found in Undertow with EJB invocations. This flaw allows an attacker to generate a valid HTTP request and send it to the server on an established connection after removing the LASTCHUNK from the bytes, causing a denial of service...

4.9CVSS6.6AI score0.00787EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2022/12/05 9:9 p.m.24 views

Low: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4.8 Security update

A security update is now available for Red Hat JBoss Enterprise Application Platform 7.4 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating...

4.9CVSS6.4AI score0.00787EPSS
Exploits0References13
UbuntuCve
UbuntuCve
added 2022/09/01 9:15 p.m.34 views

CVE-2022-2764

A flaw was found in Undertow. Denial of service can be achieved as Undertow server waits for the LASTCHUNK forever for EJB invocations...

4.9CVSS6.5AI score0.00787EPSS
Exploits0References1
Prion
Prion
added 2022/09/01 9:15 p.m.17 views

Design/Logic Flaw

A flaw was found in Undertow. Denial of service can be achieved as Undertow server waits for the LASTCHUNK forever for EJB invocations...

3.3CVSS5AI score0.00787EPSS
Exploits0References2Affected Software4
Cvelist
Cvelist
added 2022/09/01 12:0 a.m.31 views

CVE-2022-2764

A flaw was found in Undertow. Denial of service can be achieved as Undertow server waits for the LASTCHUNK forever for EJB invocations...

5.6AI score0.00787EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2022/09/01 12:0 a.m.50 views

CVE-2022-2764

A flaw was found in Undertow. Denial of service can be achieved as Undertow server waits for the LASTCHUNK forever for EJB invocations...

4.9CVSS5.7AI score0.00787EPSS
Exploits0
CVE
CVE
added 2022/09/01 12:0 a.m.276 views

CVE-2022-2764

CVE-2022-2764 concerns Undertow. A DoS can occur because the Undertow server waits for LAST_CHUNK forever during EJB invocations, impacting availability (per CVSS vector: Network, Low access, High impact to availability). Public details in the provided documents specify the vulnerability as a DoS...

4.9CVSS5.1AI score0.00787EPSS
Exploits0References2Affected Software5
OSV
OSV
added 2022/09/01 12:0 a.m.21 views

CVE-2022-2764

A flaw was found in Undertow. Denial of service can be achieved as Undertow server waits for the LASTCHUNK forever for EJB invocations...

4.9CVSS9.3AI score0.00787EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2022/08/11 8:38 a.m.56 views

CVE-2022-2764

A flaw was found in Undertow with EJB invocations. This flaw allows an attacker to generate a valid HTTP request and send it to the server on an established connection after removing the LASTCHUNK from the bytes, causing a denial of service...

4.2CVSS1.9AI score0.00787EPSS
Exploits0References3
Veracode
Veracode
added 2019/01/15 8:57 a.m.26 views

Session Hijacking

jboss-remote-naming is vulnerable to session hijacking attacks. The vulnerability exists as Red Hat JBoss Enterprise Application Platform EAP 6.1.0 does not properly cache EJB invocations by remote-naming, which allows remote attackers to hijack sessions by using a remoting client...

6.4CVSS6.1AI score0.02441EPSS
Exploits0References10Affected Software3
Tenable Nessus
Tenable Nessus
added 2014/01/31 12:0 a.m.40 views

JBoss Portal 6.1.0 Update (RHSA-2013:1437)

The version of JBoss Enterprise Portal Platform on the remote system is affected by the following issues: - A flaw in CSRF prevention filter in JBoss Web could allow remote attackers to bypass the cross-site request forgery CSRF protection mechanism via a request that lacks a session identifier...

6.8CVSS7.6AI score0.32259EPSS
Exploits11References36
RedHat Linux
RedHat Linux
added 2013/10/16 4:45 p.m.6 views

remote-naming: Session fixation due improper connection caching

Red Hat JBoss Enterprise Application Platform EAP 6.1.0 does not properly cache EJB invocations by remote-naming, which allows remote attackers to hijack sessions by using a remoting client...

6.4CVSS5.9AI score0.02441EPSS
Exploits0References4
Rows per page
Query Builder