Lucene search
K

13 matches found

vulnersOsv
vulnersOsv
added 2022/05/13 1:36 a.m.4 views

br.eti.clairton:ds-test (=0.4.0), br.jus.stf.digital:core (>=2.0.0 <=2.3.1) +420 more potentially affected by CVE-2017-7559 via io.undertow:undertow-core (>=1.4.0.Beta1 <=1.4.16.Final)

io.undertow:undertow-core MAVEN version =1.4.0.Beta1, =2.0.0, =0.2.7, =1.2.0, =1, =1, =1.0, =1.1 - com.fizzed:ninja-undertow =5.7.0.undertow2 - com.gitblit.fathom:fathom-core =0.9.0 - com.gitblit.fathom:fathom-eventbus =0.9.0 - com.gitblit.fathom:fathom-integration-test =0.9.0 -...

6.1CVSS6.7AI score0.01655EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2022/05/13 1:36 a.m.3 views

co.paralleluniverse:comsat-actors-undertow (>=0.6.0 <=0.7.0), co.paralleluniverse:comsat-test-utils (>=0.6.0 <=0.7.0) +609 more potentially affected by CVE-2017-7559 via io.undertow:undertow-core (>=1.3.0.Beta1 <=1.3.30.Final)

io.undertow:undertow-core MAVEN version =1.3.0.Beta1, =0.6.0, =0.6.0, =1.3.0, =1.1.0, =0.0.8, =0.0.8, =0.1.0, =0.0.6, =0.0.7, =5.3.1.undertow1, =2.3.7, =0.8.0, =0.8.0, =0.8.0, =0.8.4 and more Source cves: CVE-2017-7559 Source advisory: OSV:GHSA-RJ76-H87P-R3WF...

6.1CVSS6.7AI score0.01655EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2022/05/13 1:36 a.m.7 views

cn.dreampie:resty-server (=1.3.0.RELEASE), com.github.chrisdchristo:pipe (=1.0.0) +31 more potentially affected by CVE-2017-7559 via io.undertow:undertow-core (=2.0.0.Alpha1)

io.undertow:undertow-core MAVEN version =2.0.0.Alpha1 is affected by a known vulnerability. The following packages have a transitive dependency on io.undertow:undertow-core and may be impacted: - cn.dreampie:resty-server =1.3.0.RELEASE - com.github.chrisdchristo:pipe =1.0.0 -...

6.1CVSS6.7AI score0.01655EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2018/01/10 3:29 p.m.36 views

CVE-2017-7559

In Undertow 2.x before 2.0.0.Alpha2, 1.4.x before 1.4.17.Final, and 1.3.x before 1.3.31.Final, it was found that the fix for CVE-2017-2666 was incomplete and invalid characters are still allowed in the query string and path parameters. This could be exploited, in conjunction with a proxy that als...

6.1CVSS6.6AI score0.01655EPSS
Exploits0References1
OSV
OSV
added 2018/01/10 3:29 p.m.36 views

CVE-2017-7559

In Undertow 2.x before 2.0.0.Alpha2, 1.4.x before 1.4.17.Final, and 1.3.x before 1.3.31.Final, it was found that the fix for CVE-2017-2666 was incomplete and invalid characters are still allowed in the query string and path parameters. This could be exploited, in conjunction with a proxy that als...

6.1CVSS6.2AI score0.01655EPSS
Exploits0References11
CVE
CVE
added 2018/01/10 3:0 p.m.170 views

CVE-2017-7559

The CVE-2017-7559 entry concerns Undertow: in 2.x before 2.0.0.Alpha2, 1.4.x before 1.4.17.Final, and 1.3.x before 1.3.31.Final, the mitigation for CVE-2017-2666 was incomplete, allowing invalid characters in the HTTP request line (query string and path parameters). This can be exploited with a p...

6.1CVSS5.5AI score0.01655EPSS
Exploits0References11Affected Software1
RedHat Linux
RedHat Linux
added 2018/01/03 10:31 a.m.140 views

Important: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.0.9 security update on RHEL 7

An update is now available for Red Hat JBoss Enterprise Application Platform 7.0 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, ...

9.8CVSS6.8AI score0.91896EPSS
Exploits11References12
RedHat Linux
RedHat Linux
added 2018/01/03 10:20 a.m.88 views

Important: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.0.9 security update

An update is now available for Red Hat JBoss Enterprise Application Platform. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

9.8CVSS6.8AI score0.91896EPSS
Exploits11References11
Tenable Nessus
Tenable Nessus
added 2017/12/15 12:0 a.m.63 views

RHEL 6 : Red Hat JBoss Enterprise Application Platform 7.1.0 (RHSA-2017:3454)

"The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2017:3454 advisory. Red Hat JBoss Enterprise Application Platform is a platform for Java applications based on the JBoss Application Server. This release of Re...

9.8CVSS7.1AI score0.37925EPSS
Exploits7References38
Tenable Nessus
Tenable Nessus
added 2017/12/14 12:0 a.m.111 views

RHEL 6 / 7 : eap7-jboss-ec2-eap (RHSA-2017:3458)

"The remote Redhat Enterprise Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2017:3458 advisory. The eap7-jboss-ec2-eap packages provide scripts for Red Hat JBoss Enterprise Application Platform running on the Amazon Web Services AW...

9.8CVSS7.1AI score0.37925EPSS
Exploits7References38
RedHat Linux
RedHat Linux
added 2017/12/13 6:26 p.m.57 views

Important: Red Hat Security Advisory: eap7-jboss-ec2-eap security update

An update for eap7-jboss-ec2-eap is now available for Red Hat JBoss Enterprise Application Platform 7.1 for Red Hat Enterprise Linux 6 and Red Hat JBoss Enterprise Application Platform 7.1 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact o...

9.8CVSS6.9AI score0.37925EPSS
Exploits7References20
RedHat Linux
RedHat Linux
added 2017/12/13 5:48 p.m.71 views

Important: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.1.0 security update

An update is now available for Red Hat JBoss Enterprise Application Platform 7.1 for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, ...

9.8CVSS7AI score0.37925EPSS
Exploits7References20
RedHat Linux
RedHat Linux
added 2017/12/13 5:31 p.m.52 views

Important: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.1.0 security update

An update is now available for Red Hat JBoss Enterprise Application Platform. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

9.8CVSS7AI score0.37925EPSS
Exploits7References21
Rows per page
Query Builder