Lucene search
K

13 matches found

vulnersOsv
vulnersOsv
added 2022/05/13 1:38 a.m.4 views

br.eti.clairton:ds-test (=0.4.0), br.jus.stf.digital:core (>=2.0.0 <=2.3.1) +1327 more potentially affected by CVE-2017-12196 via io.undertow:undertow-core (>=1.0.0.Alpha1 <=1.4.23.Final)

io.undertow:undertow-core MAVEN version =1.0.0.Alpha1, =2.0.0, =1.0, =1.0, =0.2.7, =0.0.1, =0.0.1, =0.0.1, =0.1.0, =0.2.0, =1.1.11, =1.3.7 and more Source cves: CVE-2017-12196 Source advisory: OSV:GHSA-CP7V-VMV7-6X2Q...

5.9CVSS6.4AI score0.02049EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2020/06/15 4:13 p.m.106 views

Important: Red Hat Security Advisory: EAP Continuous Delivery Technical Preview Release 13 security update

This is a security update for JBoss EAP Continuous Delivery 13.0. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CV...

9.8CVSS6.9AI score0.37925EPSS
Exploits7References6
RedHat Linux
RedHat Linux
added 2020/06/15 4:8 p.m.88 views

Critical: Red Hat Security Advisory: EAP Continuous Delivery Technical Preview Release 12 security update

This is a security update for JBoss EAP Continuous Delivery 12.0. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...

9.8CVSS7.3AI score0.91896EPSS
Exploits11References6
RedhatCVE
RedhatCVE
added 2020/04/04 5:12 p.m.38 views

CVE-2017-12196

It was discovered that when using Digest authentication, the server does not ensure that the value of the URI in the authorization header matches the URI in the HTTP request line. This allows the attacker to execute a MITM attack and access the desired content on the server...

5.9CVSS2.5AI score0.02049EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2018/08/14 7:51 p.m.70 views

Critical: Red Hat Security Advisory: Red Hat FIS 2.0 on Fuse 6.3.0 R7 security and bug fix update

An update is now available for Red Hat Fuse Integration Services. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...

9.8CVSS6.9AI score0.72782EPSS
Exploits8References7
RedHat Linux
RedHat Linux
added 2018/05/15 7:44 p.m.154 views

Important: Red Hat Security Advisory: rhvm-appliance security and enhancement update

An update for rhvm-appliance is now available for Red Hat Virtualization 4 for RHEL-7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

9.8CVSS7.5AI score0.94457EPSS
Exploits31References13
Debian CVE
Debian CVE
added 2018/04/18 1:0 a.m.36 views

CVE-2017-12196

undertow before versions 1.4.18.SP1, 2.0.2.Final, 1.4.24.Final was found vulnerable when using Digest authentication, the server does not ensure that the value of URI in the Authorization header matches the URI in HTTP request line. This allows the attacker to cause a MITM attack and access the...

5.9CVSS6.1AI score0.02049EPSS
Exploits0
Cvelist
Cvelist
added 2018/04/18 1:0 a.m.42 views

CVE-2017-12196

undertow before versions 1.4.18.SP1, 2.0.2.Final, 1.4.24.Final was found vulnerable when using Digest authentication, the server does not ensure that the value of URI in the Authorization header matches the URI in HTTP request line. This allows the attacker to cause a MITM attack and access the...

4.8CVSS6.3AI score0.02049EPSS
Exploits0References9
CVE
CVE
added 2018/04/18 1:0 a.m.485 views

CVE-2017-12196

CVE-2017-12196 affects Undertow when using Digest authentication. The vulnerability exists because Undertow does not ensure that the URI in the Authorization header matches the HTTP request line, enabling a MITM-like scenario to access content. Affected are Undertow releases prior to 1.4.18.SP1, ...

5.9CVSS5.6AI score0.02049EPSS
Exploits0References9Affected Software1
Tenable Nessus
Tenable Nessus
added 2018/03/14 12:0 a.m.55 views

RHEL 6 : JBoss Enterprise Application Platform 7.1.1 on RHEL 6 (Important) (RHSA-2018:0479)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:0479 advisory. Red Hat JBoss Enterprise Application Platform is a platform for Java applications based on the JBoss Application Server. This release of Red...

9.8CVSS7.5AI score0.49727EPSS
Exploits7References20
RedHat Linux
RedHat Linux
added 2018/03/12 5:31 p.m.155 views

Important: Red Hat Security Advisory: jboss-ec2-eap package for EAP 7.1.1

An update for eap7-jboss-ec2-eap is now available for Red Hat JBoss Enterprise Application Platform 7.1.1 for Red Hat Enterprise Linux 6 and Red Hat JBoss Enterprise Application Platform 7.1.1 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impa...

9.8CVSS6.7AI score0.49727EPSS
Exploits7References11
RedHat Linux
RedHat Linux
added 2018/03/12 5:4 p.m.126 views

Important: Red Hat Security Advisory: JBoss Enterprise Application Platform 7.1.1 on RHEL 6

An update is now available for Red Hat JBoss Enterprise Application Platform 7.1 for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, ...

9.8CVSS6.8AI score0.49727EPSS
Exploits7References11
RedHat Linux
RedHat Linux
added 2018/03/12 4:37 p.m.168 views

Important: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.1.1 security update

An update is now available for Red Hat JBoss Enterprise Application Platform. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

9.8CVSS6.8AI score0.49727EPSS
Exploits7References12
Rows per page
Query Builder