4 matches found
Moderate: Red Hat Security Advisory: Red Hat JBoss Data Virtualization 6.1.0 security update
Red Hat JBoss Data Virtualization 6.1.0 2015 roll up patch 3, which fixes one security issue and various bugs, is now available from the Red Hat Customer Portal. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System CVSS base scor...
CVE-2015-1818
XML external entity XXE vulnerability in the dashbuilder import facility DocumentBuilders in org.jboss.dashboard.export.ImportManagerImpl in Red Hat JBoss BPM Suite before 6.1.2 allows remote attackers to read arbitrary files, conduct server-side request forgery SSRF attacks, and have other...
CVE-2015-1818
CVE-2015-1818 affects Red Hat JBoss BPM Suite's dashbuilder import facility (DocumentBuilders in org.jboss.dashboard.export.ImportManagerImpl) where XML External Entity (XXE) processing was not disabled, enabling read of arbitrary files and SSRF via crafted XML. Impact is partial confidentiality/...
Moderate: Red Hat Security Advisory: Red Hat JBoss BPM Suite 6.1.2 update
Red Hat JBoss BPM Suite 6.1.2, which fixes three security issues, several bugs, and adds various enhancements, is now available from the Red Hat Customer Portal. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores...