Lucene search
K

8 matches found

Veracode
Veracode
added 2019/05/02 5:19 a.m.46 views

Cross-site Request Forgery (CSRF)

Red Hat JBoss Enterprise Application Platform 6 is a platform for Java applications based on JBoss Application Server 7. It was discovered that sending requests containing large headers to the Web Console produced a Java OutOfMemoryError in the HTTP management interface. An attacker could use thi...

6.8CVSS9.1AI score0.02978EPSS
Exploits0References37Affected Software77
CVE
CVE
added 2015/10/27 4:0 p.m.99 views

CVE-2015-5178

CVE-2015-5178 affects Red Hat JBoss Enterprise Application Platform (EAP) / WildFly up to version 6.4.3 where the Management Console did not send X-Frame-Options, enabling clickjacking via a crafted page containing a FRAME/IFRAME. Remediation per RHSA-2015:1906 is to upgrade to 6.4.4 (EAP/WildFly...

4.3CVSS6.4AI score0.01743EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2015/10/27 4:0 p.m.23 views

CVE-2015-5178

The Management Console in Red Hat Enterprise Application Platform before 6.4.4 and WildFly formerly JBoss Application Server does not send an X-Frame-Options HTTP header, which makes it easier for remote attackers to conduct clickjacking attacks via a crafted web page that contains a 1 FRAME or 2...

6.3AI score0.01743EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2015/10/16 12:0 a.m.35 views

RHEL 6 : JBoss EAP (RHSA-2015:1905)

Updated packages that provide Red Hat JBoss Enterprise Application Platform 6.4.4 and fix three security issues, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Important security impact. Common...

6.8CVSS8.3AI score0.02978EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2015/10/16 12:0 a.m.35 views

RHEL 5 : JBoss EAP (RHSA-2015:1904)

Updated packages that provide Red Hat JBoss Enterprise Application Platform 6.4.4 and fix three security issues, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 5. Red Hat Product Security has rated this update as having Important security impact. Common...

6.8CVSS8.3AI score0.02978EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2015/10/16 12:0 a.m.41 views

RHEL 6 : JBoss EAP (RHSA-2015:1907)

Updated jboss-ec2-eap packages that fix three security issues, several bugs, and add various enhancements are now available for Red Hat JBoss Enterprise Application Platform 6.4.4 on Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Important security impact...

6.8CVSS8.4AI score0.02978EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2015/10/15 3:40 p.m.34 views

Important: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 6.4.4 update

Updated packages that provide Red Hat JBoss Enterprise Application Platform 6.4.4 and fix three security issues, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 5. Red Hat Product Security has rated this update as having Important security impact. Common...

6.8CVSS7.3AI score0.02978EPSS
Exploits0References18
RedHat Linux
RedHat Linux
added 2015/10/15 3:38 p.m.41 views

Important: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 6.4.4 update

Updated packages that provide Red Hat JBoss Enterprise Application Platform 6.4.4 and fix three security issues, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Important security impact. Common...

6.8CVSS7.3AI score0.02978EPSS
Exploits0References18
Rows per page
Query Builder